5 matches found
CVE-2026-30452
Textpattern CMS 4.9.0 contains a Broken Access Control vulnerability in the article management system that allows authenticated users with low privileges to modify articles owned by users with higher privileges. By manipulating the article ID parameter during the duplicate-and-save workflow in...
CVE-2024-44839
RapidCMS v1.3.1 was discovered to contain a SQL injection vulnerability via the articleid parameter at /default/article.php...
paicoding 安全漏洞
paicoding is an open source community system for itwanger individual developers. A security vulnerability exists in paicoding version 1.0.3, which stems from improper authorization due to misuse of the parameter articleId in the file /article/api/post...
pantamusik.com XSS vulnerability
Open Bug Bounty ID: OBB-442008 Description| Value ---|--- Affected Website:| pantamusik.com Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Remediation Guide:| OWASP XSS Prevention Cheat...
PT-2010-1972 · Joomlabamboo +1 · Joomlabamboo Simpla Admin Template +1
Name of the Vulnerable Software and Affected Versions: JoomlaBamboo JB Simpla Admin template for Joomla affected versions not specified Description: A SQL injection issue allows remote attackers to execute arbitrary SQL commands via the id parameter in an article action to the com content...