A vulnerability classified as critical has been found in YzmCMS 5.5. Affected is the function grab_image. There is no information about possible countermeasures known. It may be suggested to replace the affected object with an alternative product.
YzmCMS 5.5 grab_image server-side request forgery
- Virtual Patching
- September 2, 2021
- 9:04 am
- Virtual Patching
- September 2, 2021
- 9:04 am
Common Vulnerabilityies and Exposures
Contact us to get started
CVE-2023-32306 : TIME TRACKER UP TO 1.22.13.5791 REPORTS.PHP SQL INJECTION
Description Rockwell Automation was made aware that Kinetix 5500 drives, manufactured between May 2022 and January 2023, and are running
CVE-2023-1834 : ROCKWELL AUTOMATION KINETIX 5500 7.13 TELNET/FTP ACCESS CONTROL
Description Rockwell Automation was made aware that Kinetix 5500 drives, manufactured between May 2022 and January 2023, and are running
CVE-2023-2645 : USR USR-G806 1.0.41 WEB MANAGEMENT PAGE USERNAME/PASSWORD HARD-CODED PASSWORD
Description A vulnerability, which was classified as critical, was found in USR USR-G806 1.0.41. Affected is an unknown function of