448 matches found
zzzcms v1.5.8 Code Execution Vulnerability in Backend
zzcms is a free website builder developed in asp language. There is a code execution vulnerability in the backend of zzzcms v1.5.8. An attacker can exploit this vulnerability to execute arbitrary code...
SQL Injection Vulnerability in Qibo CMS V7.0 Background
Qibo CMS station system is a Guangzhou Qibo Network Technology Co. Qibo CMS V7.0 SQL injection vulnerability exists in the background. Attackers can use the vulnerability to obtain sensitive information in the database...
SQL injection vulnerability in the background of Qibo CMS V7.0 system
Qibo CMS station system is a Guangzhou Qibo Network Technology Co. Qibo CMS system V7.0 backend SQL injection vulnerability exists. Attackers can use the vulnerability to obtain sensitive information...
Command execution vulnerability in OTCMS backend te***.php file
Nettitanium Article Management System OTCMS is an asp article management system. There is a command execution vulnerability in the OTCMS background te.php file. An attacker can exploit the vulnerability to write arbitrary files and execute arbitrary commands...
PHP Cloud Talent System 4.6 (phpyun) SQL Injection Vulnerability
PHP cloud talent system phpyun is an open source talent and enterprise job search recruitment, hiring solutions built using PHP and MySQL database. A SQL injection vulnerability exists in the backend of phpyun v4.6. Attackers can use the vulnerability to obtain sensitive information in the databa...
PHPSHE B2C Mall System V1.7 SQL Injection Vulnerability in Background
PHPSHE B2C mall system is an online shopping mall system. The system supports express tracking, online chat, order evaluation and statistics. PHPSHE B2C Mall System V1.7 has a SQL injection vulnerability in the background. An attacker can exploit the vulnerability to obtain sensitive database...
Code Execution Vulnerabilities in the Backend of OurPHP AoP Building System V1.8.3
OURPHP is Harbin Weicheng Technology Co., Ltd. developed a PHP + MySQL based on the development of W3C standards-compliant building system. OurPHP OURPHP website builder system V1.8.3 code execution vulnerability exists in the background, attackers can use the vulnerability to obtain control of t...
SQL Injection Vulnerability in PHPMyWind Backend
PHPMyWind is a PHP+MySQL based, W3C compliant website building engine for enterprise level website building. A SQL injection vulnerability exists in the backend of PHPMyWind. An attacker can exploit the vulnerability to obtain sensitive database information...
Command Execution Vulnerability in YIXUNCMS Backend
YIXUNCMS is a showcase website system developed by Yixun Software Studio for small and medium-sized enterprises, using PHP language and with a stable MYSQL database. YIXUNCMS backend has a command execution vulnerability that can be exploited by attackers to insert Trojan horse files to gain...
Arbitrary file reading vulnerability in YIXUNCMS 2.0.4.91SD backend
YIXUNCMS is a showcase website system developed by Yixun Software Studio for small and medium-sized enterprises, using PHP language and with a stable MYSQL database. YIXUNCMS2.0.4.91SD background arbitrary file reading vulnerability, the vulnerability stems from the system fails to strictly filte...
HongCMS v3.0.0 Exists Backend Privilege Authentication Bypass Vulnerability
HongCMS is an open source lightweight content management system CMS. HongCMS v3.0.0 has a backend authentication bypass vulnerability, which can be exploited by an attacker to log in directly to the backend using the administrator's identity without authentication...
SQL Injection Vulnerability in UsualToolCMS Backend
UsualToolCMS is an enterprise-level web content management system written in PHP+MYSQL using template separation technology. UsualToolCMS v8.0 Release suffers from a SQL injection vulnerability in the backend, the vulnerability stems from the program failing to filter parameters, which can be...
Arbitrary File Deletion Vulnerability in CSCMS V4.1.0 Backend
CSCMS is a multi-functional network information management system developed by Chongsheng Network Technology, which uses PHP5+MYSQL as the technical basis for development. Using OOP object-oriented approach to build the basic operating framework. CSCMS V4.1.0 there are arbitrary file deletion...
Code Execution Vulnerability in the Backend of Feifei Movie Navigation System
FeiFei Film and TV Navigation System FeiFeiCms is a free and open source PHP movie program. A code execution vulnerability exists in the background of FeiFeiCms. An attacker can exploit the vulnerability to execute arbitrary code...
Vulnerability of Over-authorized Access in the Backend of Lan Yu Tianshen Meteorological Business Service System
Lanyu Tenchen Meteorological Business Service System is a complete public meteorological service business system developed by Chongqing Lanyu Tenchen Technology Co. A vulnerability exists in the background of Lanyu Tenchen Meteorological Service System, which stems from the system's failure to...
Backend Login Bypass Vulnerability in Tale Blog System
Tale blog system is a java development blog system. A backend login bypass vulnerability exists in Tale Blog System. An attacker can exploit this vulnerability to construct a cookie to log into any account...
IM-Learning Intelligent Learning Management System Vulnerability in Backend
IM-Learning Intelligent Learning Management System is a web-based academy with key technologies that can be customized and extended. An arbitrary password login vulnerability exists in the backend of Guangyi East IM-Learning Intelligent Learning Management System, which can be exploited by...
SQL Injection Vulnerability in Azeus CMS 2.0 Backend
Central CMS 2.0 is a cms system made by Central Studio, this CMS is written in UTF-8 coding. Azeus CMS 2.0 has a SQL injection vulnerability in the background, which can be exploited by attackers to obtain sensitive information from the database...
Laoban CMS v2.0 Vulnerabilities in Backend
Laoban CMS content management system referred to as: Laoban CMS is developed by Laoban based on PHP + MYSQL environment of the open source station-building system. Laoban CMS v2.0 has a vulnerability in the background. An attacker can exploit the vulnerability to gain unauthorized access...
Arbitrary File Read Vulnerability in Metinfo 6.0.0 Backend
MetInfo is a content management system developed using PHP and Mysql. An arbitrary file read vulnerability exists in the Metinfo version 6.0.0 backend. An attacker can exploit the vulnerability to read sensitive files on a website...