Lucene search
+L

354 matches found

cvelist
cvelist
added 2022/04/15 5:31 p.m.18 views

CVE-2022-27368

Cscms Music Portal System v4.2 was discovered to contain a SQL injection vulnerability via the component danceLists.phpzhuan...

7.5AI score0.00834EPSS
Exploits1References1
cve
cve
added 2022/04/15 5:31 p.m.68 views

CVE-2022-27368

The CVE-2022-27368 entry applies to Cscms Music Portal System v4.2 and describes a SQL injection vulnerability in the dance_Lists.php_zhuan component. The available connected records consistently identify the affected product and vulnerable function but do not provide exploit details, affected ve...

7.2CVSS7.2AI score0.00834EPSS
Exploits1References1Affected Software1
cve
cve
added 2022/04/15 5:31 p.m.67 views

CVE-2022-27365

CVE-2022-27365 affects Cscms Music Portal System v4.2, with a SQL injection vulnerability exploitable via the dance_Dance.php_del component. Connected sources (NVD/Red Hat/CNVD/etc.) corroborate a SQLi flaw in CScms that can enable unauthorized data exposure or modification through the vulnerable...

7.2CVSS7.2AI score0.00942EPSS
Exploits1References1Affected Software1
cve
cve
added 2022/04/15 5:31 p.m.70 views

CVE-2022-27366

CVE-2022-27366 affects Cscms Music Portal System v4.2, with a blind SQL injection vulnerability exploitable via the dance_Dance.php_hy component. The Red Hat and CNVD entries corroborate the flaw as a SQL injection in Cscms, impacting the CMS framework’s dance_Dance.php_hy routine. Public details...

7.2CVSS7.3AI score0.00834EPSS
Exploits1References1Affected Software1
cvelist
cvelist
added 2022/04/15 5:31 p.m.20 views

CVE-2022-27365

Cscms Music Portal System v4.2 was discovered to contain a SQL injection vulnerability via the component danceDance.phpdel...

7.5AI score0.00942EPSS
Exploits1References1
cvelist
cvelist
added 2022/04/15 5:31 p.m.21 views

CVE-2022-27366

Cscms Music Portal System v4.2 was discovered to contain a blind SQL injection vulnerability via the component danceDance.phphy...

7.5AI score0.00834EPSS
Exploits1References1
cnnvd
cnnvd
added 2022/04/15 12:0 a.m.3 views

CScms SQL注入漏洞

CScms is a content management system CMS developed based on the CI framework. CScms is vulnerable to SQL injection, which can be exploited by attackers to conduct injection attacks via the component danceDance.phpdel...

7.2CVSS5.8AI score0.00942EPSS
Exploits1References2
cnnvd
cnnvd
added 2022/04/15 12:0 a.m.6 views

CScms SQL注入漏洞

CScms is a Content Management System CMS developed based on the CI framework.Cscms Music Portal System v4.2 is vulnerable to SQL injection, which can be exploited by attackers via the component newsNews.phphy...

7.2CVSS5.8AI score0.00857EPSS
Exploits1References2
cnnvd
cnnvd
added 2022/04/15 12:0 a.m.3 views

CScms SQL注入漏洞

CScms is a content management system CMS developed based on the CI framework. cscms Music Portal System v4.2 is vulnerable to SQL injection, which can be exploited by attackers via the component danceLists.phpzhuan...

7.2CVSS5.8AI score0.00834EPSS
Exploits1References2
cnnvd
cnnvd
added 2022/04/15 12:0 a.m.4 views

CScms SQL注入漏洞

CScms is a content management system CMS developed based on the CI framework.Cscms Music Portal System v4.2 is vulnerable to SQL injection, which can be exploited by attackers to conduct injection attacks via the component danceDance.phphy...

7.2CVSS5.8AI score0.00834EPSS
Exploits1References2
cnvd
cnvd
added 2022/03/23 12:0 a.m.19 views

CScms Input Validation Error Vulnerability

CScms is a content management system CMS developed on a CI framework. A security vulnerability exists in CScms Music Portal System v4.2, which stems from a backurl parameter that causes a redirect. No details of the vulnerability are available at this time...

5.4CVSS6.8AI score0.00406EPSS
Exploits1References1
attackerkb
attackerkb
added 2022/03/21 10:15 p.m.2 views

CVE-2022-27090

Cscms Music Portal System v4.2 was discovered to contain a redirection vulnerability via the backurl parameter...

5.4CVSS5.9AI score0.00406EPSS
Exploits1References2
osv
osv
added 2022/03/21 10:15 p.m.3 views

CVE-2022-27090

Cscms Music Portal System v4.2 was discovered to contain a redirection vulnerability via the backurl parameter...

5.4CVSS6.1AI score0.00406EPSS
Exploits1References1
nvd
nvd
added 2022/03/21 10:15 p.m.19 views

CVE-2022-27090

Cscms Music Portal System v4.2 was discovered to contain a redirection vulnerability via the backurl parameter...

5.4CVSS0.00406EPSS
Exploits1References1
prion
prion
added 2022/03/21 10:15 p.m.14 views

Design/Logic Flaw

Cscms Music Portal System v4.2 was discovered to contain a redirection vulnerability via the backurl parameter...

4.9CVSS5.5AI score0.00406EPSS
Exploits1References1Affected Software1
cve
cve
added 2022/03/21 9:5 p.m.82 views

CVE-2022-27090

CVE-2022-27090 affects CScms Music Portal System v4.2. The issue is a backurl parameter–driven redirection vulnerability. The Connected documents corroborate a redirect flaw but do not provide concrete exploitation details, affected versions beyond v4.2, updated patches, or remediations. Therefor...

5.4CVSS5.5AI score0.00406EPSS
Exploits1References1Affected Software1
cvelist
cvelist
added 2022/03/21 9:5 p.m.21 views

CVE-2022-27090

Cscms Music Portal System v4.2 was discovered to contain a redirection vulnerability via the backurl parameter...

5.8AI score0.00406EPSS
Exploits1References1
cnvd
cnvd
added 2022/01/13 12:0 a.m.16 views

cscms SQL Injection Vulnerability

CScms is a content management system CMS developed on the CI framework. cscms has a security vulnerability that stems from the fact that cscms v4.1 allows SQL injection via the js del function. No detailed vulnerability details are available...

9.8CVSS2.9AI score0.01213EPSS
Exploits1References1
cnvd
cnvd
added 2022/01/13 12:0 a.m.21 views

cscms SQL Injection Vulnerability (CNVD-2022-04985)

CScms is a content management system CMS developed on the CI framework. cscms has a security vulnerability that stems from cscms v4.1 allowing SQL injection via the "page delete" function. No details of the vulnerability are available...

9.8CVSS3.1AI score0.01096EPSS
Exploits1References1
nvd
nvd
added 2022/01/11 4:15 p.m.13 views

CVE-2020-28103

cscms v4.1 allows for SQL injection via the "pagedel" function...

9.8CVSS0.01096EPSS
Exploits1References1
Rows per page
Query Builder