4 matches found
CVE-2025-6936
A vulnerability was found in code-projects Simple Pizza Ordering System 1.0. It has been classified as critical. This affects an unknown part of the file /addpro.php. The manipulation of the argument ID leads to sql injection. It is possible to initiate the attack remotely. The exploit has been...
CVE-2024-48758
dingfanzu CMS V1.0 was discovered to contain a Cross-Site Request Forgery CSRF via the addPro parameter of the component doAdminAction.php which allows a remote attacker to execute arbitrary code...
PT-2024-33202 · Unknown · Dingfanzu Cms
Name of the Vulnerable Software and Affected Versions: dingfanzu CMS version 1.0 Description: The issue is a Cross-Site Request Forgery CSRF that allows a remote attacker to execute arbitrary code via the addPro parameter of the doAdminAction.php component. This enables unauthorized actions...
CVE-2024-48758
CVE-2024-48758 affects the dingfanzu CMS v1.0. The Red Hat, NVD, CNNVD, CVE records describe a CSRF vulnerability via the addPro parameter of doAdminAction.php that enables a remote attacker to execute arbitrary code. The issue is documented across multiple feeds, with the practical impact framed...