152 matches found
CVE-2025-29150
BlueCMS 1.6 suffers from Arbitrary File Deletion via the id parameter in an /publish.php?act=del request...
CVE-2025-29150
BlueCMS 1.6 suffers from Arbitrary File Deletion via the id parameter in an /publish.php?act=del request...
PT-2025-15993 · Bluecms · Bluecms
Name of the Vulnerable Software and Affected Versions: BlueCMS version 1.6 Description: The issue allows for Arbitrary File Deletion via the id parameter in a "/publish.php?act=del" request. This can potentially lead to a denial of service. Recommendations: For BlueCMS version 1.6, avoid using th...
CVE-2025-29150
BlueCMS 1.6 is affected by CVE-2025-29150 via Arbitrary File Deletion caused by abuse of the id parameter in a "/publish.php?act=del" request. The issue potentially enables deletion of files, which can lead to a denial of service. The connected PT-2025-15993 entry documents the affected software/...
CVE-2025-29150
BlueCMS 1.6 suffers from Arbitrary File Deletion via the id parameter in an /publish.php?act=del request...
BlueCMS 安全漏洞
BlueCMS is a PHP and MySQL based Content Management System CMS by 6arshid Personal Developer. A security vulnerability exists in BlueCMS version 1.6, which stems from a problem with the id parameter and could lead to arbitrary file deletion...
CVE-2025-29150
BlueCMS 1.6 suffers from Arbitrary File Deletion via the id parameter in an /publish.php?act=del request...
CVE-2024-45894
BlueCMS 1.6 suffers from Arbitrary File Deletion via the filename parameter in an /admin/database.php?act=del request...
CVE-2024-45894
BlueCMS 1.6 suffers from Arbitrary File Deletion via the filename parameter in an /admin/database.php?act=del request...
PT-2024-31842 · Bluecms · Bluecms
Name of the Vulnerable Software and Affected Versions: BlueCMS version 1.6 Description: The issue allows for Arbitrary File Deletion through the file name parameter in an "/admin/database.php?act=del" request. This flaw can be exploited to delete files arbitrarily. Recommendations: For BlueCMS...
CVE-2024-45894
BlueCMS 1.6 suffers from Arbitrary File Deletion via the filename parameter in an /admin/database.php?act=del request...
BlueCMS 安全漏洞
BlueCMS is a content management system CMS based on PHP and MySQL. A security vulnerability exists in BlueCMS version 1.6, which originates from arbitrary file deletion via the filename parameter in the /admin/database.php?act=del request...
CVE-2024-45894
BlueCMS 1.6 suffers from Arbitrary File Deletion via the filename parameter in an /admin/database.php?act=del request...
CVE-2024-45894
CVE-2024-45894 affects BlueCMS 1.6, enabling Arbitrary File Deletion via the file_name parameter in the /admin/database.php?act=del endpoint. The underlying issue is that the parameter allows deletions of arbitrary files, exposing potential file-impact risks. Remediation guidance in the connected...
CVE-2023-33734
BlueCMS v1.6 was discovered to contain a SQL injection vulnerability via the keywords parameter at search.php...
CVE-2023-33734
BlueCMS v1.6 was discovered to contain a SQL injection vulnerability via the keywords parameter at search.php...
CVE-2023-33734
BlueCMS v1.6 was discovered to contain a SQL injection vulnerability via the keywords parameter at search.php...
Sql injection
BlueCMS v1.6 was discovered to contain a SQL injection vulnerability via the keywords parameter at search.php...
PT-2023-24462 · Bluecms · Bluecms
Name of the Vulnerable Software and Affected Versions: BlueCMS version 1.6 Description: A SQL injection issue was found in BlueCMS via the keywords parameter at the "search.php" endpoint. Recommendations: For BlueCMS version 1.6, avoid using the keywords parameter in the "search.php" endpoint unt...
CVE-2023-33734
BlueCMS v1.6 was discovered to contain a SQL injection vulnerability via the keywords parameter at search.php...