CVE-2024-25874

A cross-site scripting XSS vulnerability in the New/Edit Article module of Enhavo CMS v0.13.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Create Tag text field...

CVE-2023-0243

A vulnerability classified as critical has been found in TuziCMS 2.0.6. This affects the function index of the file App\Manage\Controller\ArticleController.class.php of the component Article Module. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack...

Sql injection

A vulnerability classified as critical has been found in TuziCMS 2.0.6. This affects the function index of the file App\Manage\Controller\ArticleController.class.php of the component Article Module. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack...

CVE-2023-0243 TuziCMS Article Module ArticleController.class.php index sql injection

A vulnerability classified as critical has been found in TuziCMS 2.0.6. This affects the function index of the file App\Manage\Controller\ArticleController.class.php of the component Article Module. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack...

CVE-2023-0243 TuziCMS Article Module ArticleController.class.php index sql injection

A vulnerability classified as critical has been found in TuziCMS 2.0.6. This affects the function index of the file App\Manage\Controller\ArticleController.class.php of the component Article Module. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack...

TuziCMS SQL注入漏洞

TuziCMS Rabbit CMS is a PHP and MySQL based enterprise website content management system CMS. A SQL injection vulnerability exists in TuziCMS version 2.0.6, which stems from a problem with the function delall in the file appmanage controllerkefucontroller.class.php of the component article module...

TuziCMS SQL注入漏洞

TuziCMS Rabbit CMS is a PHP and MySQL based enterprise website content management system CMS. A SQL injection vulnerability exists in TuziCMS version 2.0.6, which stems from a problem with the function index of the file appmanage controllerarticlecontroller.class.php in the component article...

PT-2023-16106 · Tuzicms · Tuzicms

Name of the Vulnerable Software and Affected Versions: TuziCMS version 2.0.6 Description: A critical issue has been found in the Article Module of TuziCMS, specifically affecting the index function of the ArticleController.class.php file. The manipulation of the id argument leads to SQL injection...

WTCMS Cross-Site Scripting Vulnerability (CNVD-2021-69268)

WTCMS is a content management system CMS based on ThinkPHP.A cross-site scripting vulnerability exists in the keyword search function under the backend article module of WTCMS. No detailed vulnerability details are provided at this time...

WTCMS 跨站脚本漏洞

WTCMS is a content management system CMS based on ThinkPHP.A cross-site scripting vulnerability exists in the keyword search function under the backend article module of WTCMS. No detailed vulnerability details are provided at this time...

CVE-2020-24993

There is a cross site scripting vulnerability on CmsWing 1.3.7. This vulnerability stored XSS is triggered when visitors access the article module...

CVE-2020-24993

There is a cross site scripting vulnerability on CmsWing 1.3.7. This vulnerability stored XSS is triggered when visitors access the article module...

Cross site scripting

There is a cross site scripting vulnerability on CmsWing 1.3.7. This vulnerability stored XSS is triggered when visitors access the article module...

XOOPS articlephp SQL Injection (CVE-2008-2094)

An SQL injection vulnerability has been reported in Xoops Article Module. Successful exploitation of this vulnerability would allow a remote attacker to execute arbitrary SQL commands on the affected system...

CVE-2012-5919

Multiple cross-site scripting XSS vulnerabilities in Havalite 1.0.4 and earlier allow remote attackers to inject arbitrary web script or HTML via the 1 find or 2 replace fields to havalite/findReplace.php; 3 username parameter to havalite/havalogin.php, 4 the Edit Article module, or 5 havapost.ph...

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in Havalite 1.0.4 and earlier allow remote attackers to inject arbitrary web script or HTML via the 1 find or 2 replace fields to havalite/findReplace.php; 3 username parameter to havalite/havalogin.php, 4 the Edit Article module, or 5 havapost.ph...

Jarida 1.0 Multiple Vulnerabilities

Exploit for php platform in category web applications Exploit Title: Jarida 1.0 SQL Injection Date : 26 September 2011 Author : Ptrace Security Gianni Gnesa gnix Contact : researchatptrace-securitydotcom Software Link: http://sourceforge.net/projects/jarida/ Version : 1.0 Tested on : CentOS 5.6 0...

Sql injection

SQL injection vulnerability in article.php in the Article module for XOOPS allows remote attackers to execute arbitrary SQL commands via the id parameter...

CVE-2008-2094

SQL injection vulnerability in article.php in the Article module for XOOPS allows remote attackers to execute arbitrary SQL commands via the id parameter...

CVE-2008-2094

CVE-2008-2094 : The provided documents describe a SQL injection vulnerability in the XOOPS Article Module, specifically in article.php via the id parameter. The vulnerability allows a remote attacker to execute arbitrary SQL commands through user-supplied input, thereby potentially exposing or al...