7210 matches found
CVE-2019-25099
A vulnerability classified as critical was found in Arthmoor QSF-Portal. This vulnerability affects unknown code of the file index.php. The manipulation of the argument a leads to path traversal. The patch is identified as ea4f61e23ecb83247d174bc2e2cbab521c751a7d. It is recommended to apply a pat...
CVE-2019-25099
A vulnerability classified as critical was found in Arthmoor QSF-Portal. This vulnerability affects unknown code of the file index.php. The manipulation of the argument a leads to path traversal. The patch is identified as ea4f61e23ecb83247d174bc2e2cbab521c751a7d. It is recommended to apply a pat...
Path traversal
A vulnerability classified as critical was found in Arthmoor QSF-Portal. This vulnerability affects unknown code of the file index.php. The manipulation of the argument a leads to path traversal. The patch is identified as ea4f61e23ecb83247d174bc2e2cbab521c751a7d. It is recommended to apply a pat...
CVE-2019-25099 Arthmoor QSF-Portal index.php path traversal
A vulnerability classified as critical was found in Arthmoor QSF-Portal. This vulnerability affects unknown code of the file index.php. The manipulation of the argument a leads to path traversal. The patch is identified as ea4f61e23ecb83247d174bc2e2cbab521c751a7d. It is recommended to apply a pat...
CVE-2019-25099
CVE-2019-25099 affects Arthmoor QSF-Portal. The vulnerability is a path traversal in the index.php file triggered by manipulating the argument a. Root cause: unvalidated input leads to traversal outside intended directories. Patch identified as ea4f61e23ecb83247d174bc2e2cbab521c751a7d. Affected p...
QSF-Portal 路径遍历漏洞
QSF-Portal is a fast, secure, and easy-to-maintain Web community portal written in PHP/MySQL by Arthmoor Personal Developers. QSF-Portal suffers from a path traversal vulnerability that originates from unknown code in the file index.php that operates on the parameter a to cause path traversal...
CVE-2014-125045
A vulnerability has been found in meol1 and classified as critical. Affected by this vulnerability is the function GetAnimal of the file opdracht4/index.php. The manipulation of the argument where leads to sql injection. The identifier of the patch is 82441e413f87920d1e8f866e8ef9d7f353a7c583. It ...
Sql injection
A vulnerability has been found in meol1 and classified as critical. Affected by this vulnerability is the function GetAnimal of the file opdracht4/index.php. The manipulation of the argument where leads to sql injection. The identifier of the patch is 82441e413f87920d1e8f866e8ef9d7f353a7c583. It ...
CVE-2014-125044 soshtolsus wing-tight index.php file inclusion
A vulnerability, which was classified as critical, was found in soshtolsus wing-tight. This affects an unknown part of the file index.php. The manipulation of the argument p leads to file inclusion. It is possible to initiate the attack remotely. Upgrading to version 1.0.0 is able to address this...
PT-2023-10114 · Unknown · Soshtolsus Wing-Tight
Name of the Vulnerable Software and Affected Versions: soshtolsus wing-tight versions prior to 1.0.0 Description: A critical vulnerability was found in soshtolsus wing-tight, affecting an unknown part of the file index.php. The manipulation of the p argument leads to file inclusion, and it is...
CVE-2018-25057
A vulnerability was found in simplephplinkshortener. It has been classified as critical. Affected is an unknown function of the file index.php. The manipulation of the argument $link"id" leads to sql injection. The name of the patch is b26ac6480761635ed94ccb0222ba6b732de6e53f. It is recommended t...
CVE-2018-25057
A vulnerability was found in simplephplinkshortener. It has been classified as critical. Affected is an unknown function of the file index.php. The manipulation of the argument $link"id" leads to sql injection. The name of the patch is b26ac6480761635ed94ccb0222ba6b732de6e53f. It is recommended t...
Sql injection
A vulnerability was found in simplephplinkshortener. It has been classified as critical. Affected is an unknown function of the file index.php. The manipulation of the argument $link"id" leads to sql injection. The name of the patch is b26ac6480761635ed94ccb0222ba6b732de6e53f. It is recommended t...
CVE-2021-4271 panicsteve w2wiki Markdown index.php toHTML cross site scripting
A vulnerability was found in panicsteve w2wiki. It has been rated as problematic. Affected by this issue is the function toHTML of the file index.php of the component Markdown Handler. The manipulation leads to cross site scripting. The attack may be launched remotely. The name of the patch is...
CVE-2022-4592
A vulnerability was found in luckyshot CRMx and classified as critical. This issue affects the function get/save/delete/comment/commentdelete of the file index.php. The manipulation leads to sql injection. The attack may be initiated remotely. The name of the patch is...
Sql injection
A vulnerability was found in luckyshot CRMx and classified as critical. This issue affects the function get/save/delete/comment/commentdelete of the file index.php. The manipulation leads to sql injection. The attack may be initiated remotely. The name of the patch is...
CVE-2022-4592 luckyshot CRMx index.php commentdelete sql injection
A vulnerability was found in luckyshot CRMx and classified as critical. This issue affects the function get/save/delete/comment/commentdelete of the file index.php. The manipulation leads to sql injection. The attack may be initiated remotely. The name of the patch is...
CVE-2020-20588
File upload vulnerability in function upload in action/Core.class.php in zhimengzhe iBarn 1.5 allows remote attackers to run arbitrary code via avatar upload to index.php...
Unrestricted file upload
File upload vulnerability in function upload in action/Core.class.php in zhimengzhe iBarn 1.5 allows remote attackers to run arbitrary code via avatar upload to index.php...
CVE-2020-20588
File upload vulnerability in function upload in action/Core.class.php in zhimengzhe iBarn 1.5 allows remote attackers to run arbitrary code via avatar upload to index.php...