CVSS: 8.8EPSS: 0%CPEs: 3EXPL: 0CVE-2018-9472
https://notcve.org/view.php?id=CVE-2018-9472
This could lead to remote code execution in an unprivileged process with no additional execution privileges needed. • https://source.android.com/security/bulletin/2018-09-01 • CWE-190: Integer Overflow or Wraparound •
CVSS: 5.3EPSS: 0%CPEs: -EXPL: 1CVE-2024-11491 – 115cms useradmin.html cross site scripting
https://notcve.org/view.php?id=CVE-2024-11491
A vulnerability was found in 115cms up to 20240807. It has been rated as problematic. Affected by this issue is some unknown functionality of the file /index.php/admin/web/useradmin.html. The manipulation of the argument ks leads to cross site scripting. The attack may be launched remotely. • https://github.com/Hebing123/cve/issues/70 https://vuldb.com/?ctiid.285506 https://vuldb.com/?id.285506 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') CWE-94: Improper Control of Generation of Code ('Code Injection') •
CVSS: 5.3EPSS: 0%CPEs: -EXPL: 1CVE-2024-11490 – 115cms set.html cross site scripting
https://notcve.org/view.php?id=CVE-2024-11490
A vulnerability was found in 115cms up to 20240807. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /index.php/admin/web/set.html. The manipulation of the argument type leads to cross site scripting. The attack can be launched remotely. • https://github.com/Hebing123/cve/issues/70 https://vuldb.com/?ctiid.285505 https://vuldb.com/?id.285505 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') CWE-94: Improper Control of Generation of Code ('Code Injection') •
CVSS: 5.3EPSS: 0%CPEs: -EXPL: 1CVE-2024-11489 – 115cms file.html cross site scripting
https://notcve.org/view.php?id=CVE-2024-11489
A vulnerability was found in 115cms up to 20240807. It has been classified as problematic. Affected is an unknown function of the file /index.php/admin/web/file.html. The manipulation of the argument ks leads to cross site scripting. It is possible to launch the attack remotely. • https://github.com/Hebing123/cve/issues/70 https://vuldb.com/?ctiid.285504 https://vuldb.com/?id.285504 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') CWE-94: Improper Control of Generation of Code ('Code Injection') •
CVSS: 5.3EPSS: 0%CPEs: -EXPL: 1CVE-2024-11488 – 115cms web_user.html cross site scripting
https://notcve.org/view.php?id=CVE-2024-11488
A vulnerability was found in 115cms up to 20240807 and classified as problematic. This issue affects some unknown processing of the file /app/admin/view/web_user.html. The manipulation of the argument ks leads to cross site scripting. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. • https://github.com/Hebing123/cve/issues/70 https://vuldb.com/?ctiid.285503 https://vuldb.com/?id.285503 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') CWE-94: Improper Control of Generation of Code ('Code Injection') •