23 matches found
CatfishCMS has a command execution vulnerability
CatfishCMS is open source and free PHP CMS web content management system. CatfishCMS suffers from a command execution vulnerability that can be exploited by an attacker to gain control of a web server...
CatfishCMS suffers from a cross-site scripting vulnerability
CatfishCMS is an open source content management system CMS written in PHP. A cross-site scripting vulnerability exists in Catfish CMS version V4.8.27, which can be exploited by a remote attacker to inject arbitrary Web script or HTML by sending the 'pinglun' parameter to the /index/Index/pinglun...
Arbitrary File Read Vulnerability in catfishCMS
CatfishCMS is open source and free PHP CMS web content management system. An arbitrary file read vulnerability exists in catfishCMS. An attacker can exploit this vulnerability to obtain sensitive information in the database...