33 matches found
CVE-2022-38922
BluePage CMS thru 3.9 processes an insufficiently sanitized HTTP Header Cookie value allowing MySQL Injection in the 'users-cookie-settings' token using a Time-based blind SLEEP payload...
EUVD-2008-5997
Malware in sbrugna...
EUVD-2008-6009
Malware in sbrugna...
EUVD-2022-41469
Malicious code in bioql PyPI...
EUVD-2022-41470
Malicious code in bioql PyPI...
CVE-2022-38923
BluePage CMS thru v3.9 processes an insufficiently sanitized HTTP Header allowing MySQL Injection in the 'User-Agent' field using a Time-based blind SLEEP payload...
CVE-2022-38922
BluePage CMS thru 3.9 processes an insufficiently sanitized HTTP Header Cookie value allowing MySQL Injection in the 'users-cookie-settings' token using a Time-based blind SLEEP payload...
CVE-2022-38923
BluePage CMS thru v3.9 processes an insufficiently sanitized HTTP Header allowing MySQL Injection in the 'User-Agent' field using a Time-based blind SLEEP payload...
Design/Logic Flaw
BluePage CMS thru 3.9 processes an insufficiently sanitized HTTP Header Cookie value allowing MySQL Injection in the 'users-cookie-settings' token using a Time-based blind SLEEP payload...
Code injection
BluePage CMS thru v3.9 processes an insufficiently sanitized HTTP Header allowing MySQL Injection in the 'User-Agent' field using a Time-based blind SLEEP payload...
CVE-2022-38923
BluePage CMS thru v3.9 processes an insufficiently sanitized HTTP Header allowing MySQL Injection in the 'User-Agent' field using a Time-based blind SLEEP payload...
BluePage CMS SQL注入漏洞
BluePage CMS is a content management system from BluePage open source. A security vulnerability exists in BluePage CMS version 3.9 and earlier versions, which arises from SQL injection when processing insufficiently cleaned HTTP header cookie values...
CVE-2022-38922
BluePage CMS thru 3.9 processes an insufficiently sanitized HTTP Header Cookie value allowing MySQL Injection in the 'users-cookie-settings' token using a Time-based blind SLEEP payload...
CVE-2022-38922
BluePage CMS up to version 3.9 is affected by an SQL injection in the processing of HTTP header cookie values, via the 'users-cookie-settings' token, allowing time-based blind exploitation (SLEEP). The issue arises from insufficient sanitization of the cookie header; Red Hat and NVD entries corro...
CVE-2022-38923
BluePage CMS thru v3.9 processes an insufficiently sanitized HTTP Header allowing MySQL Injection in the 'User-Agent' field using a Time-based blind SLEEP payload...
CVE-2022-38922
BluePage CMS thru 3.9 processes an insufficiently sanitized HTTP Header Cookie value allowing MySQL Injection in the 'users-cookie-settings' token using a Time-based blind SLEEP payload...
CVE-2022-38923
BluePage CMS (3.9 and earlier) contains SQL injection vulnerabilities due to insufficient sanitization of HTTP header fields. CVE-2022-38923 affects the User-Agent header, enabling MySQL Injection with a time-based blind payload on network access without authentication; CVE-2022-38922 (Red Hat / ...
PT-2023-13664 · Unknown · Bluepage Cms
Name of the Vulnerable Software and Affected Versions: BluePage CMS versions 3.9 and earlier Description: The issue allows MySQL Injection in the User-Agent field using a Time-based blind SLEEP payload due to insufficient sanitization of HTTP Headers. Recommendations: For BluePage CMS versions 3....
PT-2023-13663 · Unknown · Bluepage Cms
Name of the Vulnerable Software and Affected Versions: BluePage CMS versions 3.9 and earlier Description: The issue allows MySQL Injection in the users-cookie-settings token using a Time-based blind SLEEP payload due to insufficient sanitization of the HTTP Header Cookie value. Recommendations: F...
BLUEPAGE CMS 2.5 'PHPSESSID' Session Fixation Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/31315/info BLUEPAGE CMS is prone to a session-fixation vulnerability. Attackers can exploit this issue to hijack a user's session and gain unauthorized access to the affected application. BLUEPAGE CMS 2.5 is vulnerable;...