RSS   Vulnerabilities for 'Dhcms'   RSS

2021-05-12
 
CVE-2020-19275

CWE-20
 

 
An Information Disclosure vulnerability exists in dhcms 2017-09-18 when entering invalid characters after the normal interface, which causes an error that will leak the physical path.

 
 
CVE-2020-19274

CWE-79
 

 
A Cross SIte Scripting (XSS) vulnerability exists in Dhcms 2017-09-18 in guestbook via the message board, which could let a remote malicious user execute arbitrary code.

 
2019-03-03
 
CVE-2019-9550

CWE-79
 

 
DhCms through 2017-09-18 has admin.php?r=admin/Index/index XSS.

 


Copyright 2024, cxsecurity.com

 

Back to Top