Show filters
13 Total Results
Displaying 1-10 of 13
Sort by:
Attacker Value
Unknown

CVE-2019-12564

Disclosure Date: June 03, 2019 (last updated November 27, 2024)
In DouCo DouPHP v1.5 Release 20190516, remote attackers can view the database backup file via a brute-force guessing approach for data/backup/DyyyymmddThhmmss.sql filenames.
0
0
Attacker Value
Unknown

CVE-2018-20560

Disclosure Date: December 28, 2018 (last updated November 27, 2024)
An issue was discovered in DouCo DouPHP 1.5 20181221. admin/show.php?rec=update has XSS via the show_name parameter.
0
0
Attacker Value
Unknown

CVE-2018-20567

Disclosure Date: December 28, 2018 (last updated November 27, 2024)
An issue was discovered in DouCo DouPHP 1.5 20181221. \install\index.php allows a reload of the product in opportunistic circumstances in which install.lock cannot be read.
0
0
Attacker Value
Unknown

CVE-2018-20563

Disclosure Date: December 28, 2018 (last updated November 27, 2024)
An issue was discovered in DouCo DouPHP 1.5 20181221. admin/mobile.php?rec=system&act=update has XSS via the mobile_name parameter.
0
0
Attacker Value
Unknown

CVE-2018-20557

Disclosure Date: December 28, 2018 (last updated November 27, 2024)
An issue was discovered in DouCo DouPHP 1.5 20181221. admin/page.php?rec=edit has XSS via the page_name parameter.
0
0
Attacker Value
Unknown

CVE-2018-20564

Disclosure Date: December 28, 2018 (last updated November 27, 2024)
An issue was discovered in DouCo DouPHP 1.5 20181221. admin/product_category.php?rec=update has XSS via the cat_name parameter.
0
0
Attacker Value
Unknown

CVE-2018-20565

Disclosure Date: December 28, 2018 (last updated November 27, 2024)
An issue was discovered in DouCo DouPHP 1.5 20181221. admin/nav.php?rec=update has XSS via the nav_name parameter.
0
0
Attacker Value
Unknown

CVE-2018-20562

Disclosure Date: December 28, 2018 (last updated November 27, 2024)
An issue was discovered in DouCo DouPHP 1.5 20181221. admin/article_category.php?rec=update has XSS via the cat_name parameter.
0
0
Attacker Value
Unknown

CVE-2018-20558

Disclosure Date: December 28, 2018 (last updated November 27, 2024)
An issue was discovered in DouCo DouPHP 1.5 20181221. admin/system.php?rec=update has XSS via the site_name parameter.
0
0
Attacker Value
Unknown

CVE-2018-20561

Disclosure Date: December 28, 2018 (last updated November 27, 2024)
An issue was discovered in DouCo DouPHP 1.5 20181221. admin/article.php?rec=update has XSS via the title parameter.
0
0
View More Topics  Next >