Search Results | AttackerKB

3 Total Results

Displaying 1-3 of 3

Attacker Value

Unknown

CVE-2023-34878

Disclosure Date: June 14, 2023 (last updated October 08, 2023)

An issue was discovered in Ujcms v6.0.2 allows attackers to gain sensitive information via the dir parameter to /api/backend/core/web-file-html/download-zip.

Attacker Value

Unknown

CVE-2023-34865

Disclosure Date: June 14, 2023 (last updated October 08, 2023)

Directory traversal vulnerability in ujcms 6.0.2 allows attackers to move files via the rename feature.

Attack Vector: Network Privileges: None User Interaction: None

Attacker Value

Unknown

CVE-2023-34747

Disclosure Date: June 14, 2023 (last updated October 08, 2023)

File upload vulnerability in ujcms 6.0.2 via /api/backend/core/web-file-upload/upload.

Attack Vector: Network Privileges: None User Interaction: None

3 Total Results

Displaying 1-3 of 3

Unknown

CVE-2023-34878

Unknown

CVE-2023-34865

Unknown

CVE-2023-34747

Quick Cookie Notification