89 matches found
BEESCMS suffers from an arbitrary file read vulnerability (CNVD-2020-48976)
BEESCMS Enterprise Website Management System - PHP+MYSQL, multi-language system, easy to expand content modules, diversified template styles, simple and powerful template production, professional SEO optimization, easy to operate in the background. BEESCMS has an arbitrary file read vulnerability...
Code Execution Vulnerability in BEESCMS
BEESCMS Enterprise Website Management System - PHP+MYSQL, multi-language system, easy to expand content modules, diversified template styles, simple and powerful template production, professional SEO optimization, easy to operate in the background. BEESCMS has a code execution vulnerability that...
Arbitrary File Read Vulnerability in BEESCMS
BEESCMS is a scalable content management system CMS based on PHP and MySQL. BEESCMS suffers from an arbitrary file read vulnerability that can be exploited by attackers to obtain sensitive information...
File upload vulnerability in BEESCMS backend ad***_pi***_up***.php page
BEESCMS is a scalable content management system CMS based on PHP and MySQL. A file upload vulnerability exists in the adpiup.php page in the BEESCMS backend. An attacker can exploit the vulnerability to upload a webshell and gain server privileges...
Arbitrary file deletion vulnerability in beescms
BEESCMS is a scalable content management system CMS based on PHP and MySQL. An arbitrary file deletion vulnerability exists in beescms, which can be exploited by an attacker to delete system files...
File upload vulnerability in beescms backend
BEESCMS is a scalable content management system CMS based on PHP and MySQL. A file upload vulnerability exists in the beescms backend. An attacker can exploit the vulnerability to upload malicious files and gain server privileges...
SQL injection vulnerability in beescm backend ad***_as***.php file
BEESCMS is a PHP+MYSQL architecture, multi-language system, easy to expand the content module, diversified template styles, can meet the corporate website, foreign trade websites, institutions, educational institutions, personal websites. There is a SQL injection vulnerability in the adas.php fil...
SQL injection vulnerability in beescm backend ad***.php file
BEESCMS is PHP + MYSQL architecture, multi-language system, content modules are easy to expand, diversified template styles, template production is simple and powerful, professional SEO optimization can meet the corporate website, foreign trade websites, institutions, educational institutions,...
SQL injection vulnerability in beescm backend ad***_co***.php file
BEESCMS is PHP+MYSQL architecture, multi-language system, easy to expand content modules, diversified template styles, simple and powerful template production, professional SEO optimization, easy to operate the background, fully meet the corporate website, foreign trade websites, institutions,...
SQL injection vulnerability in beescm backend ad***_fl***.php file
BEESCMS is PHP+MYSQL architecture, multi-language system, easy to expand content modules, diversified template styles, simple and powerful template production, professional SEO optimization, easy to operate the background, fully meet the corporate website, foreign trade websites, institutions,...
CVE-2019-8347
BEESCMS 4.0 has a CSRF vulnerability to add arbitrary VIP accounts via the admin/adminmember.php?action=add&nav=addwebuser&adminpnav=user URI...
CVE-2019-8347
BEESCMS 4.0 has a CSRF vulnerability to add arbitrary VIP accounts via the admin/adminmember.php?action=add&nav=addwebuser&adminpnav=user URI...
Cross site request forgery (csrf)
BEESCMS 4.0 has a CSRF vulnerability to add arbitrary VIP accounts via the admin/adminmember.php?action=add&nav=addwebuser&adminpnav=user URI...
CVE-2019-8347
BEESCMS 4.0 has a CSRF vulnerability to add arbitrary VIP accounts via the admin/adminmember.php?action=add&nav=addwebuser&adminpnav=user URI...
CVE-2019-8347
CVE-2019-8347 : BEESCMS 4.0 contains a CSRF vulnerability that enables an attacker to add arbitrary VIP accounts through the admin/admin_member.php?action=add&nav=add_web_user&admin_p_nav=user URI. The connected sources confirm the issue as a CSRF flaw, enabling account creation without proper us...
File Upload Vulnerability in BEESCMS
BEESCMS is a scalable content management system CMS based on PHP and MySQL. A file upload vulnerability exists in BEESCMS. An attacker can exploit the vulnerability to upload a webshell and gain server privileges...
CVE-2018-12739
In BEESCMS 4.0, CSRF allows administrators to be added arbitrarily, a related issue to CVE-2018-10266...
CVE-2018-12739
In BEESCMS 4.0, CSRF allows administrators to be added arbitrarily, a related issue to CVE-2018-10266...
Cross site request forgery (csrf)
In BEESCMS 4.0, CSRF allows administrators to be added arbitrarily, a related issue to CVE-2018-10266...
CVE-2018-12739
In BEESCMS 4.0, CSRF allows administrators to be added arbitrarily, a related issue to CVE-2018-10266...