8 matches found
Arbitrary File Read Vulnerability in GxlcmsQY System
GxlcmsQY system is a simple program tailored for business users. GxlcmsQY System\Lib\Lib\Action\Admin\DataAction.class.php contains an arbitrary file reading vulnerability. An attacker can exploit the vulnerability to read arbitrary files and obtain sensitive information...
Multiple SQL Injection Vulnerabilities in GxlcmsQY System
GxlcmsQY system is a simple program tailored for business users. GxlcmsQY System has multiple SQL injection vulnerabilities. An attacker can exploit the vulnerabilities to obtain sensitive database information...
GxlcmsQY Arbitrary PHP Code Execution Vulnerability
GxlcmsQY system is a quick website cms tailored for business users. An arbitrary PHP code execution vulnerability exists in the upload function in LibLibActionAdminUploadAction.class.php in GxlcmsQY v1.0.0713. A remote attacker can exploit this vulnerability by first changing the configuploadclas...
Directory Traversal Vulnerability in GxlcmsQY System
GxlcmsQY system is a simple program tailored for business users. A directory traversal vulnerability exists in GxlcmsQY System\Lib\Lib\Action\Admin\PicAction.class.php. An attacker can exploit this vulnerability to obtain sensitive information...
GxlcmsQY update function arbitrary PHP code execution vulnerability
GxlcmsQY system is a quick website cms tailored for business users. An arbitrary PHP code execution vulnerability exists in the update function in LibLibActionAdminTplAction.class.php in Gxlcms QY v1.0.0713. A remote attacker can exploit this vulnerability by placing code in a template to execute...
SQL Injection Vulnerability in Frontend of gxlcmsqy System
GxlcmsQY system is a simple program tailored for business users. A SQL injection vulnerability exists in the frontend of the gxlcmsqy system. An attacker can exploit this vulnerability to obtain sensitive database information...
GxlcmsQY企业建站系统前台一处sql注入
...
File Upload Vulnerability in Gxlcmsqy System
GxlcmsQY system is a simple program tailored for business users. A file upload vulnerability exists in Gxlcmsqy System. An attacker logging into the backend can upload backdoor files and gain control of the web server...