59 matches found
CVE-2023-50563
Semcms v4.8 was discovered to contain a SQL injection vulnerability via the AID parameter at SEMCMSFunction.php...
CVE-2025-14011
CVE-2025-14011 involves JIZHICMS up to version 2.5.5. Affected is the function commentlist in /index.php/admins/Comment/addcomment.html, within the Add Display Name Field component. The issue arises from manipulation of the aid/tid parameter, enabling SQL injection. Public exploitation exists, an...
JIZHICMS SQL注入漏洞
JIZHICMS Jizhi CMS is an open source content management system CMS from China Jizhi JIZHI. A SQL injection vulnerability exists in JIZHICMS 2.5.5 and earlier versions, which stems from incorrect manipulation of the parameter aid/tid in the file /index.php/admins/Comment/addcomment.html, which may...
EUVD-2020-14971
Malware in sbrugna...
PHPGurukul Human Metapneumovirus Testing Management System 注入漏洞
Human Metapneumovirus Testing Management System is a human subpneumovirus testing management system. The Human Metapneumovirus Testing Management System suffers from a SQL injection vulnerability that originates from a lack of validation of externally-entered SQL statements in the parameter...
Itechscripts School Management Software 注入漏洞
Itechscripts School Management Software is a campus management software. An injection vulnerability exists in Itechscripts School Management Software version 2.75, which stems from the parameter aid in the file /notice-edit.php that can lead to SQL injection...
PT-2025-1328 · Itechscripts · Itechscripts School Management
Name of the Vulnerable Software and Affected Versions: Itechscripts School Management Software version 2.75 Description: A critical issue has been found in the software, affecting an unknown part of the /notice-edit.php file. The manipulation of the aid argument leads to SQL injection. It is...
PT-2024-38348 · Simple Machines · Simplemachines Smf
Name of the Vulnerable Software and Affected Versions: SimpleMachines SMF version 2.1.4 Description: A vulnerability has been found in the User Alert Read Status Handler component, specifically in the file /index.php?action=profile;u=2;area=showalerts;do=read. The manipulation of the aid argument...
PT-2024-38347 · Simple Machines · Simplemachines Smf
Name of the Vulnerable Software and Affected Versions: SimpleMachines SMF version 2.1.4 Description: A critical issue was found in the Delete User Handler component, specifically in the file /index.php?action=profile;u=2;area=showalerts;do=remove. The manipulation of the aid argument leads to...
SMF 安全漏洞
SMF Simple Machines Forum is a free, open source community forum project from Simple Machines Open Source. A security vulnerability exists in SMF version 2.1.4 that stems from manipulation of the parameter aid resulting in improper control of resource identifiers...
PT-2024-37502 · Unknown · Lahirudanushka School Management System
Name of the Vulnerable Software and Affected Versions: lahirudanushka School Management System versions 1.0.0 through 1.0.1 Description: A critical issue has been found in the Attendance Report Page component, specifically affecting the /attendancelist.php file. The manipulation of the aid argume...
School-Management-System SQL Injection Vulnerability
School-Management-System is a school management system by the individual developer Lahiru Danushka. A SQL injection vulnerability exists in School-Management-System version 1.0.0, 1.0.1, which stems from an incorrect operation of the parameter aid that can lead to sql injection...
Desdev DedeCMS 跨站请求伪造漏洞
Desdev DedeCMS Dream Weaving Content Management System is a PHP-based open-source content management system CMS of China Zhuozhuo network Desdev company. The system has content publishing, content management, content editing and content retrieval functions. A cross-site request forgery...
CVE-2023-50563
Semcms v4.8 was discovered to contain a SQL injection vulnerability via the AID parameter at SEMCMSFunction.php...
CVE-2023-50563
Semcms v4.8 was discovered to contain a SQL injection vulnerability via the AID parameter at SEMCMSFunction.php...
Sql injection
Semcms v4.8 was discovered to contain a SQL injection vulnerability via the AID parameter at SEMCMSFunction.php...
CVE-2023-50563
Semcms v4.8 contains a SQL injection vulnerability in SEMCMS_Function.php via the AID parameter. Affected component: SEMCMS_Function.php; vulnerable input AID leads to potential unauthorized data access or modification (high/critical impact per CVSS 3.1). No exploitation details are provided in t...
PT-2023-31587 · Semcms · Semcms
Name of the Vulnerable Software and Affected Versions: Semcms version 4.8 Description: The issue is related to a SQL injection vulnerability. It can be exploited via the AID parameter at the SEMCMS Function.php file. Recommendations: For Semcms version 4.8, consider restricting access to the SEMC...
CVE-2023-50563
Semcms v4.8 was discovered to contain a SQL injection vulnerability via the AID parameter at SEMCMSFunction.php...
SEMCMS SQL Injection Vulnerability
SEMCMS is a multilingual content management system CMS for foreign trade websites. A SQL injection vulnerability exists in SEMCMS v4.8, which originates from the AID parameter in SEMCMSFunction.php containing SQL injection...