📦 Yifang

This vulnerability in YiFang CMS allows remote attackers to upload arbitrary files without restrictions through the mergeMultipartUpload function. It affects all installations of YiFang CMS up to vers...

This vulnerability allows remote attackers to execute SQL injection attacks against YiFang CMS versions up to 2.0.5 by manipulating the new_url parameter in the app/logic/L_tool.php file. The exploit ...

This vulnerability in YiFang CMS allows remote attackers to access sensitive information through the exportInstallTable function in Migrate.php. It affects all installations up to version 2.0.5. The i...