Show filters
18 Total Results
Displaying 11-18 of 18
Sort by:
Attacker Value
Unknown

CVE-2018-20564

Disclosure Date: December 28, 2018 (last updated November 27, 2024)
An issue was discovered in DouCo DouPHP 1.5 20181221. admin/product_category.php?rec=update has XSS via the cat_name parameter.
0
0
Attacker Value
Unknown

CVE-2018-20565

Disclosure Date: December 28, 2018 (last updated November 27, 2024)
An issue was discovered in DouCo DouPHP 1.5 20181221. admin/nav.php?rec=update has XSS via the nav_name parameter.
0
0
Attacker Value
Unknown

CVE-2018-20558

Disclosure Date: December 28, 2018 (last updated November 27, 2024)
An issue was discovered in DouCo DouPHP 1.5 20181221. admin/system.php?rec=update has XSS via the site_name parameter.
0
0
Attacker Value
Unknown

CVE-2018-20562

Disclosure Date: December 28, 2018 (last updated November 27, 2024)
An issue was discovered in DouCo DouPHP 1.5 20181221. admin/article_category.php?rec=update has XSS via the cat_name parameter.
0
0
Attacker Value
Unknown

CVE-2018-20561

Disclosure Date: December 28, 2018 (last updated November 27, 2024)
An issue was discovered in DouCo DouPHP 1.5 20181221. admin/article.php?rec=update has XSS via the title parameter.
0
0
Attacker Value
Unknown

CVE-2018-20566

Disclosure Date: December 28, 2018 (last updated November 27, 2024)
An issue was discovered in DouCo DouPHP 1.5 20181221. It allows full path disclosure in "Smarty error: unable to read resource" error messages for a crafted installation page.
0
0
Attacker Value
Unknown

CVE-2018-20559

Disclosure Date: December 28, 2018 (last updated November 27, 2024)
An issue was discovered in DouCo DouPHP 1.5 20181221. admin/product.php?rec=update has XSS via the name parameter.
0
0
Attacker Value
Unknown

CVE-2018-20419

Disclosure Date: December 24, 2018 (last updated November 27, 2024)
DouCo DouPHP 1.5 has upload/admin/manager.php?rec=insert CSRF to add an administrator account.
0
0
View More Topics  < Previous