• Skip to primary navigation
  • Skip to main content
CVE Vulnerability

CVE Vulnerability

  • CVE’s
  • Products
  • Vendors

discuzx

CVE-2018-5375

February 26, 2023 by

Discuz! DiscuzX X3.4 has XSS via the includespacecpspacecp_space.php appid parameter in a delete action.

CVE-2018-5376

February 26, 2023 by

Discuz! DiscuzX X3.4 has XSS via the includespacecpspacecp_upload.php op parameter.

CVE-2018-5377

February 26, 2023 by

Discuz! DiscuzX X3.4 allows remote attackers to bypass intended access restrictions via the archiverindex.php action parameter.

CVE-2018-5331

February 26, 2023 by

Discuz! DiscuzX X3.4 has XSS via the view parameter to include/space/space_poll.php, as demonstrated by a mod=space do=poll request to home.php.

CVE-2018-5259

February 26, 2023 by

Discuz! DiscuzX X3.4 allows remote authenticated users to bypass intended attachment-deletion restrictions via a modified aid parameter.

CVE-2018-10297

February 26, 2023 by

Discuz! DiscuzX through X3.4 has stored XSS via the portal.php?mod=portalcp&ac=article URI, related to mishandling of IMG elements associated with remote images.

  • Go to page 1
  • Go to page 2
  • Go to Next Page »

Copyright CVE Vulnerabilities 2023
Data Sources:

  • NIST
  • MITRE
  • CVE Search
  • Open CVE