Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

dayrui — Vulnerabilities & Security Advisories 9

Browse all 9 CVE security advisories affecting dayrui. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Dayrui is a PHP-based content management system and development framework primarily used for building websites and web applications. Historically, it has been susceptible to multiple remote code execution vulnerabilities, cross-site scripting (XSS) flaws, and privilege escalation issues, accounting for its nine recorded CVEs. The platform's modular architecture and extensive plugin ecosystem have introduced security challenges, with many vulnerabilities stemming from insufficient input validation and improper access controls. While no major public security incidents have been widely documented, the consistent pattern of vulnerabilities suggests ongoing security concerns for organizations implementing Dayrui solutions without rigorous hardening and maintenance practices.

Found 9 results / 9Clear Filters
Top products by dayrui: XunRuiCMS
CVE IDTitleCVSSSeverityPublished
CVE-2025-15144 dayrui XunRuiCMS JSONP Callback Init.php dr_exit_msg cross site scripting — XunRuiCMSCWE-79 4.3 Medium2025-12-28
CVE-2025-14008 dayrui XunRuiCMS Project Domain Change Test admin79f2ec220c7e.php server-side request forgery — XunRuiCMSCWE-918 4.7 Medium2025-12-04
CVE-2025-14007 dayrui XunRuiCMS Domain Name Binding admin79f2ec220c7e.php cross site scripting — XunRuiCMSCWE-79 2.0 Low2025-12-04
CVE-2025-14006 dayrui XunRuiCMS Add Data Validation admind45f74adbd95.php cross site scripting — XunRuiCMSCWE-79 3.5 Low2025-12-04
CVE-2025-14005 dayrui XunRuiCMS Add Display Name Field admind45f74adbd95.php cross site scripting — XunRuiCMSCWE-79 2.4 Low2025-12-04
CVE-2025-14004 dayrui XunRuiCMS Email Setting admind45f74adbd95.php server-side request forgery — XunRuiCMSCWE-918 4.7 Medium2025-12-04
CVE-2025-2131 dayrui XunRuiCMS Friendly Links cross site scripting — XunRuiCMSCWE-79 2.4 Low2025-03-09
CVE-2025-1186 dayrui XunRuiCMS Api.php deserialization — XunRuiCMSCWE-502 6.3 Medium2025-02-12
CVE-2025-1177 dayrui XunRuiCMS Linkage.php import_add deserialization — XunRuiCMSCWE-502 6.3 Medium2025-02-11

This page lists every published CVE security advisory associated with dayrui. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.