Vulnerabilities > Wuzhicms > Wuzhi CMS > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-05-23 | CVE-2023-31860 | Cross-site Scripting vulnerability in Wuzhicms Wuzhi CMS 3.1.2 Wuzhi CMS v3.1.2 has a storage type XSS vulnerability in the backend of the Five Finger CMS b2b system. | 5.4 |
| 2022-06-28 | CVE-2020-19897 | Cross-site Scripting vulnerability in Wuzhicms Wuzhi CMS 4.1.0 A reflected Cross Site Scripting (XSS) in wuzhicms v4.1.0 allows remote attackers to execute arbitrary web script or HTML via the imgurl parameter. | 4.3 |
| 2021-09-28 | CVE-2020-20124 | Code Injection vulnerability in Wuzhicms Wuzhi CMS 4.1.0 Wuzhi CMS v4.1.0 contains a remote code execution (RCE) vulnerability in \attachment\admin\index.php. | 6.5 |
| 2019-02-25 | CVE-2019-9110 | Cross-site Scripting vulnerability in Wuzhicms Wuzhi CMS 4.1.0 XSS exists in WUZHI CMS 4.1.0 via index.php?m=content&f=postinfo&v=listing&set_iframe=[XSS] to coreframe/app/content/postinfo.php. | 4.3 |
| 2019-02-25 | CVE-2019-9109 | Cross-site Scripting vulnerability in Wuzhicms Wuzhi CMS 4.1.0 XSS exists in WUZHI CMS 4.1.0 via index.php?m=message&f=message&v=add&username=[XSS] to coreframe/app/message/message.php. | 4.3 |
| 2019-02-25 | CVE-2019-9107 | Cross-site Scripting vulnerability in Wuzhicms Wuzhi CMS 4.1.0 XSS exists in WUZHI CMS 4.1.0 via index.php?m=attachment&f=imagecut&v=init&imgurl=[XSS] to coreframe/app/attachment/imagecut.php. | 4.3 |
| 2018-10-29 | CVE-2018-18712 | Cross-Site Request Forgery (CSRF) vulnerability in Wuzhicms Wuzhi CMS 4.1.0 An issue was discovered in WUZHI CMS 4.1.0. | 6.8 |
| 2018-10-29 | CVE-2018-18711 | Cross-Site Request Forgery (CSRF) vulnerability in Wuzhicms Wuzhi CMS 4.1.0 An issue was discovered in WUZHI CMS 4.1.0. | 6.8 |
| 2018-10-01 | CVE-2018-17832 | Cross-site Scripting vulnerability in Wuzhicms Wuzhi CMS 2.0 XSS exists in WUZHI CMS 2.0 via the index.php v or f parameter. | 4.3 |
| 2018-07-23 | CVE-2018-14512 | Cross-site Scripting vulnerability in Wuzhicms Wuzhi CMS 4.1.0 An XSS vulnerability was discovered in WUZHI CMS 4.1.0. | 4.3 |