3 matches found
CVE-2023-1321 lmxcms AcquisiAction.class.php update sql injection
A vulnerability has been found in lmxcms 1.41 and classified as critical. Affected by this vulnerability is the function update of the file AcquisiAction.class.php. The manipulation of the argument id with the input -1 and updatexml0,concat0x7e,user,1 leads to sql injection. The attack can be...
lmxcms SQL注入漏洞
lmxcms dream cms is a website builder from China Dream Cms lmxcms company. SQL injection vulnerability exists in lmxcms version 1.41, the vulnerability stems from a security issue in the function update in the file AcquisiAction.class.php, which can lead to SQL injection via the parameter id...
PT-2023-16893 · Lmxcms · Lmxcms
Name of the Vulnerable Software and Affected Versions: lmxcms version 1.41 Description: A critical issue has been found in the function update of the file AcquisiAction.class.php. The manipulation of the argument id with specific input leads to SQL injection. The attack can be launched remotely...