wangl1989
Web & CMS Pluginsindividual-dev
Top products
Latest CVEs
The 14 most recently published vulnerabilities affecting wangl1989.
- CVE-2025-26136A SQL injection vulnerability exists in mysiteforme versions prior to 2025.01.1.9.8
- CVE-2024-57767MSFM before v2025.01.01 was discovered to contain a Server-Side Request Forgery (SSRF) via the component /file/download.8.6
- CVE-2024-57766MSFM before 2025.01.01 was discovered to contain a fastjson deserialization vulnerability via the component system/table/editField.9.1
- CVE-2024-57765MSFM before 2025.01.01 was discovered to contain a SQL injection vulnerability via the s_name parameter at table/list.7.5
- CVE-2024-57764MSFM before 2025.01.01 was discovered to contain a fastjson deserialization vulnerability via the component system/table/add.9.1
- CVE-2024-57763MSFM before 2025.01.01 was discovered to contain a fastjson deserialization vulnerability via the component system/table/addField.9.1
- CVE-2024-57762MSFM before v2025.01.01 was discovered to contain a deserialization vulnerability via the pom.xml configuration file.7.5
- CVE-2024-13139wangl1989 mysiteforme FileController doContent server-side request forgery6.3
- CVE-2024-13138wangl1989 mysiteforme LocalUploadServiceImpl upload unrestricted upload4.7
- CVE-2024-13137wangl1989 mysiteforme SiteController RestResponse cross site scripting2.4
- CVE-2024-13136wangl1989 mysiteforme ShiroConfig.java rememberMeManager deserialization6.3
- CVE-2022-29309mysiteforme v2.2.1 was discovered to contain a Server-Side Request Forgery.7.5
- CVE-2021-46026mysiteforme, as of 19-12-2022, is vulnerable to Cross Site Scripting (XSS) via the add blog tag function in the blog tag in the background blog management.5.4
- CVE-2021-46027mysiteforme, as of 19-12-2022, has a CSRF vulnerability in the background blog management. The attacker constructs a CSRF load. Once the administrator clicks a malicious link, a blog tag will be added6.5