📦 Yccms

This vulnerability allows attackers to upload arbitrary files to yccms 3.3 systems without proper validation, leading to remote code execution. Attackers can upload malicious files disguised as images...

This directory traversal vulnerability in yccms 3.3 allows attackers to delete arbitrary files on the server by manipulating request parameters in delete functions. It affects all deployments of yccms...

YCCMS 3.4 contains a stored XSS vulnerability in article management that allows attackers to inject malicious scripts into article titles. When other users view articles with these titles, the scripts...