Vulnerabilities > Yunucms > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-08-12 | CVE-2020-18445 | Cross-site Scripting vulnerability in Yunucms 1.1.9 Cross Site Scripting (XSS) vulnerability exists in YUNUCMS 1.1.9 via the upurl function in Page.php. | 6.1 |
| 2021-08-12 | CVE-2020-18446 | Cross-site Scripting vulnerability in Yunucms 1.1.9 Cross Site Scripting (XSS) vulnerability exists in YUNUCMS 1.1.9 via the param parameter in the insertContent function in ContentModel.php. | 4.8 |
| 2019-01-04 | CVE-2019-5311 | Cross-site Scripting vulnerability in Yunucms 1.1.8 An issue was discovered in YUNUCMS V1.1.8. | 6.1 |
| 2019-01-04 | CVE-2019-5310 | Cross-site Scripting vulnerability in Yunucms 1.1.8 YUNUCMS 1.1.8 has XSS in app/admin/controller/System.php because crafted data can be written to the sys.php file, as demonstrated by site_title in an admin/system/basic POST request. | 6.1 |
| 2018-10-29 | CVE-2018-18726 | Cross-site Scripting vulnerability in Yunucms 1.1.5 An XSS issue was discovered in admin/sitelink/editsitelink?id=16 in YUNUCMS 1.1.5. | 4.8 |
| 2018-10-29 | CVE-2018-18725 | Cross-site Scripting vulnerability in Yunucms 1.1.5 An XSS issue was discovered in admin/banner/editbanner?id=20 in YUNUCMS 1.1.5. | 4.8 |
| 2018-10-29 | CVE-2018-18724 | Cross-site Scripting vulnerability in Yunucms 1.1.5 An XSS issue was discovered in index.php/admin/category/editcategory?id=73 in YUNUCMS 1.1.5. | 4.8 |
| 2018-10-29 | CVE-2018-18723 | Cross-site Scripting vulnerability in Yunucms 1.1.5 An XSS issue was discovered in index.php/admin/area/editarea/id/110000 in YUNUCMS 1.1.5. | 4.8 |
| 2018-10-29 | CVE-2018-18722 | Cross-site Scripting vulnerability in Yunucms 1.1.5 An XSS issue was discovered in admin/content/editcontent?id=29&gopage=1 in YUNUCMS 1.1.5. | 4.8 |
| 2018-10-29 | CVE-2018-18721 | Cross-site Scripting vulnerability in Yunucms 1.1.5 An XSS issue was discovered in admin/link/editlink?id=5 in YUNUCMS 1.1.5. | 4.8 |