SQL Injection Vulnerability in CMS Backend of Luoyang Yunye Information Technology Co.

Yunye CMS enterprise building system is a php open source cms specialized in small and medium-sized enterprise website construction. Luoyang Yunye Information Technology Co., Ltd. Yunye CMS background SQL injection vulnerability , attackers can use the vulnerability to obtain sensitive informatio...

Code Execution Vulnerability in KiteCMS Backend

KiteCMS open source web content management system CMS, the system is based on the framework ThinkPHP5.1. version of the development , applicable to individuals and enterprises to quickly build stations and development needs. Provide website templates for various industries , the system uses a...

MacCMS has a file upload vulnerability

MacCMS is a cms website builder system. There is a file upload vulnerability in the MacCMS backend that allows attackers to utilize a self-constructed zip file upload trojan...

Command Execution Vulnerability in Espcms P8 Backend of Honghu Erchuang Netlink Information Technology Co.

ESPCMS-P8 enterprise station management system using PHP + MySQL development, after 6 generations of development, the current ESPCMS-P8 platform stability and can be developed independently of the maturity of the platform, which supports enterprise news and product releases, talent recruitment,...

Command Execution Vulnerability in Ocean CMS Backend

Ocean CMS is a web content management system based on PHP+MYSQL architecture that can run across platforms. A command execution vulnerability exists in the backend of Ocean CMS. An attacker can exploit this vulnerability to gain control of the web server...

SQL Injection Vulnerability in YzmCMS Backend or***.cl***.php

YzmCMS is a lightweight and open source content management system based on PHP+Mysql architecture, running on Linux, Windows, MacOSX, Solaris and other platforms. A SQL injection vulnerability exists in YzmCMS backend or.cl.php. Attackers can use the vulnerability to obtain sensitive information ...

Directory traversal vulnerability in ESPCMS backend Te***.php file

ESPCMS is a content management system CMS based on PHP and MySQL. A directory traversal vulnerability exists in the ESPCMS backend Te.php file. An attacker can exploit the vulnerability to obtain sensitive information...

Command Execution Vulnerability in EyouCms Backend

EyouCms is a free + open source enterprise content management system developed on the core of TP5.0 framework. EyouCms backend has a command execution vulnerability. An attacker can exploit the vulnerability to execute commands and gain server privileges...

SQL Injection Vulnerability in NetShow CMS Backend

Netspan CMS is a website management system developed by Netspan Technology. SQL injection vulnerability exists in the backend of Nethub CMS, which can be exploited by attackers to obtain sensitive information from the database...

Multiple SQL Injection Vulnerabilities in DM Enterprise Website System Backend

DM enterprise building system is developed by php + mysql a set of specialized in small and medium-sized enterprise website construction of open source cms. DM enterprise website building system background there are multiple SQL injection vulnerabilities. Attackers can use the vulnerability to...

Jinwei cell phone mall system backend existence of arbitrary file deletion vulnerability

Jinwei Mobile Mall is a mall management system for micro-business customers with public numbers. There is an arbitrary file deletion vulnerability in the background of the Jinwei Mobile Mall system. An attacker can use this vulnerability to traverse the files in any directory and delete any file ...

SQL Injection Vulnerability in SiteServer CMS Backend

SiteServer CMS is an open source and free enterprise-level CMS system developed by Beijing Baiyong Qianwei Software Technology Development Co. A SQL injection vulnerability exists in the backend of SiteServer CMS. An attacker can exploit the vulnerability to obtain sensitive information in the...

File upload vulnerability in beescms backend

BEESCMS is a scalable content management system CMS based on PHP and MySQL. A file upload vulnerability exists in the beescms backend. An attacker can exploit the vulnerability to upload malicious files and gain server privileges...

File upload vulnerability in Extreme CMS backend (CNVD-2020-33342)

Extreme CMS is an open source and free PHPCMS web content management system. A file upload vulnerability exists in the backend of Extreme CMS. Attackers can use the vulnerability to upload webshell and gain server privileges...

Command Execution Vulnerability in PHPOK Backend

PHPOK system hereinafter referred to as OK system is a content management system for website construction developed by Shenzhen Kunshu Technology Co. A command execution vulnerability exists in the backend of PHPOK, which can be exploited by attackers to gain server privileges...

SQL Injection Vulnerability in Ocean CMS Backend

Ocean CMS is a web content management system based on PHP+MYSQL architecture that can run across platforms. There is a SQL injection vulnerability in the backend of Ocean CMS, which can be exploited by attackers to obtain sensitive database information...

Command Execution Vulnerability in Ocean CMS Backend (CNVD-2020-33132)

Ocean CMS is a web content management system based on PHP+MYSQL architecture that can run across platforms. A command execution vulnerability exists in the backend of Ocean CMS, which can be exploited by attackers to gain control of the web server...

SQL Injection Vulnerability in Ocean CMS Backend (CNVD-2020-33136)

Ocean CMS is a web content management system based on PHP+MYSQL architecture that can run across platforms. There is a SQL injection vulnerability in the backend of Ocean CMS, which can be exploited by attackers to obtain sensitive database information...

SQL Injection Vulnerability in Ocean CMS Backend (CNVD-2020-33135)

Ocean CMS is a web content management system based on PHP+MYSQL architecture that can run across platforms. There is a SQL injection vulnerability in the backend of Ocean CMS, which can be exploited by attackers to obtain sensitive database information...

Code Execution Vulnerability in the Backend of Daimi CMS

DAMI CMS is a PC building station and cell phone building station integrated all-in-one system. A code execution vulnerability exists in the background of Daimi CMS, which can be exploited by attackers to gain server privileges...