📦 Youdiancms
by Youdiancms
🔍 What is Youdiancms?
Description coming soon...
🛡️ Security Overview
Click on a severity to filter vulnerabilities
⚠️ Known Vulnerabilities
A session fixation vulnerability in YoudianCMS v9.5.20 and earlier allows remote attackers to escalate privileges by manipulating the sessionID parameter. This affects all YoudianCMS installations run...
CVE-2022-32301 is a critical SQL injection vulnerability in YoudianCMS v9.5.0 that allows attackers to execute arbitrary SQL commands via the IdList parameter. This affects all users running the vulne...
CVE-2022-32300 is a SQL injection vulnerability in YoudianCMS v9.5.0 that allows attackers to execute arbitrary SQL commands via the MailSendID parameter. This affects administrators using the mail ma...
CVE-2020-18116 is an SQL injection vulnerability in YouDianCMS 8.0 that allows attackers to execute arbitrary SQL commands through unfiltered search keywords. This affects all deployments of YouDianCM...
This vulnerability allows attackers to inject malicious scripts via the 'Parent' parameter in YouDianCMS admin interface, leading to cross-site scripting (XSS). It affects YouDianCMS 9.5.21 installati...
This vulnerability allows attackers to inject malicious scripts into YouDianCMS admin interface through the UserName or LogType parameters. When an administrator views the log page, these scripts exec...
This CVE describes a Server-Side Request Forgery (SSRF) vulnerability in YouDianCMS 7 that allows attackers to manipulate the curl_exec function to make unauthorized requests from the vulnerable serve...
This critical vulnerability in YouDianCMS 7 allows remote attackers to upload arbitrary files without restrictions via the /Public/ckeditor/plugins/multiimage/dialogs/image_upload.php file. Attackers ...