EUVD-2020-13577

Malware in sbrugna...

EUVD-2020-13576

Malware in sbrugna...

CVE-2020-20797

FlameCMS 3.3.5 contains a time-based blind SQL injection vulnerability in /account/register.php...

CVE-2020-20796

FlameCMS 3.3.5 contains a SQL injection vulnerability in /master/article.php via the "Id" parameter...

CVE-2019-16309

FlameCMS 3.3.5 has SQL injection in account/login.php via accountName...

FlameCMS SQL Injection Vulnerability

FlameCMS is an open source PHP-based content management system CMS. A SQL injection vulnerability exists in FlameCMS version 3.3.5. An attacker can exploit this vulnerability to cause SQL injection with the help of the id parameter in masterarticle.php...

CVE-2020-20796

FlameCMS 3.3.5 contains a SQL injection vulnerability in /master/article.php via the "Id" parameter...

CVE-2020-20797

FlameCMS 3.3.5 contains a time-based blind SQL injection vulnerability in /account/register.php...

CVE-2020-20797

FlameCMS 3.3.5 contains a time-based blind SQL injection vulnerability in /account/register.php...

CVE-2020-20796

FlameCMS 3.3.5 contains a SQL injection vulnerability in /master/article.php via the "Id" parameter...

Sql injection

FlameCMS 3.3.5 contains a SQL injection vulnerability in /master/article.php via the "Id" parameter...

Sql injection

FlameCMS 3.3.5 contains a time-based blind SQL injection vulnerability in /account/register.php...

CVE-2020-20797

FlameCMS 3.3.5 contains a time-based blind SQL injection vulnerability in /account/register.php...

CVE-2020-20797

FlameCMS 3.3.5 contains a time-based blind SQL injection in /account/register.php. Root cause: insufficient input validation/escaping allows parameterized SQL execution. Affects multiple CIA with high impact per CVSSv3.1 (CRITICAL, 9.8) and CVSSv2 (HIGH, 7.5). Exploitation details are not provide...

CVE-2020-20796

FlameCMS 3.3.5 contains a SQL injection vulnerability in /master/article.php via the "Id" parameter...

CVE-2020-20796

CVE-2020-20796 affects FlameCMS 3.3.5. A SQL injection vulnerability exists in the file and parameter path master/article.php via the Id parameter, enabling potentially harmful database access. The issue is rated as high/critical (CVSS 3.1: 9.8; CVSS 2.0: 7.5), with network-vector exposure and no...

FlameCMS SQL注入漏洞

FlameCMS is an open source PHP-based content management system CMS. A SQL injection vulnerability exists in FlameCMS version 3.3.5. An attacker can exploit this vulnerability to cause SQL injection with the help of the id parameter in masterarticle.php...

FlameCMS SQL注入漏洞

FlameCMS is a PHP-based open source content management system CMS. A SQL injection vulnerability exists in FlameCMS version 3.3.5, which stems from the lack of effective filtering and escaping of parameters in the software's accountregister.php, resulting in a time-based SQL blind injection...

FlameCMS suffers from SQL injection vulnerability (CNVD-2019-37171)

FlameCMS Enterprise Station System is developed in PHP+MYSQL language. FlameCMS suffers from a SQL injection vulnerability. An attacker can exploit the vulnerability to obtain database information...

CVE-2019-16309

FlameCMS 3.3.5 has SQL injection in account/login.php via accountName...