two-kisses

4 exploits Active since Jul 2022
CVE-2021-31676 WRITEUP MEDIUM WORKING POC
PESCMS-V2.3.3 - Reflected Cross-Site Scripting
A reflected XSS was discovered in PESCMS-V2.3.3. When combined with CSRF in the same file, they can cause bigger destruction.
CVSS 6.1
CVE-2021-31677 WRITEUP MEDIUM WORKING POC
PESCMS-V2.3.3 - Cross-Site Request Forgery
An issue was discovered in PESCMS-V2.3.3. There is a CSRF vulnerability that can modify admin and other members' passwords.
CVSS 6.5
CVE-2021-31678 WRITEUP MEDIUM WORKING POC
PESCMS-V2.3.3 - Cross-Site Request Forgery
An issue was discovered in PESCMS-V2.3.3. There is a CSRF vulnerability that can delete import information about a user's company.
CVSS 6.5
CVE-2021-31679 WRITEUP MEDIUM WORKING POC
PESCMS-V2.3.3 - Cross-Site Request Forgery
An issue was discovered in PESCMS-V2.3.3. There is a CSRF vulnerability that allows attackers to delete admin and other members' account numbers.
CVSS 6.5