Cuppa CMS v1.0 漏洞列表
共找到 6 个与 Cuppa CMS v1.0 相关的漏洞
📅 加载漏洞趋势中...
-
CVE-2022-25486: Cuppa CMS v1.0 - Local File Inclusion POC
CuppaCMS v1.0 was discovered to contain a local file inclusion via the url parameter in /alerts/alertConfigField.php. -
CVE-2022-37190: Cuppa CMS v1.0 - Remote Code Execution POC
CuppaCMS 1.0 is vulnerable to Remote Code Execution (RCE). An authenticated user can control both parameters (action and function) from "/api/index.php. -
CVE-2022-38295: Cuppa CMS v1.0 - Cross Site Scripting POC
Cuppa CMS v1.0 was discovered to contain a cross-site scripting vulnerability at /table_manager/view/cu_user_groups. This vulnerability allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Name field under the Add New Group function. -
CVE-2022-25486: Cuppa CMS v1.0 - Local File Inclusion POC
CuppaCMS v1.0 was discovered to contain a local file inclusion via the url parameter in /alerts/alertConfigField.php. -
CVE-2022-37190: Cuppa CMS v1.0 - Remote Code Execution POC
CuppaCMS 1.0 is vulnerable to Remote Code Execution (RCE). An authenticated user can control both parameters (action and function) from "/api/index.php. -
CVE-2022-38295: Cuppa CMS v1.0 - Cross Site Scripting POC
Cuppa CMS v1.0 was discovered to contain a cross-site scripting vulnerability at /table_manager/view/cu_user_groups. This vulnerability allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Name field under the Add New Group function.