23 matches found
File upload vulnerability exists in LaySNS (CNVD-2021-44004)
LaySNS is a set of ThinkPHP5 LayUI development based on the collection of content publishing and community exchanges and one of the integrated website system. A file upload vulnerability exists in LaySNS, which can be exploited to obtain server control privileges...
SQL Injection Vulnerability in LaySNS of Wuhan Classen Technology Co. Ltd (CNVD-2020-30205)
Laysns using Think + Layui as the technical basis for development, using the OOP approach to the basic operation of the framework to build, modular development approach to do for the form of functional development. Wuhan class Sen Technology Co., Ltd. LaySNS SQL injection vulnerability, attackers...
SQL Injection Vulnerability in LaySNS of Wuhan Classen Technology Co. Ltd (CNVD-2020-30206)
Laysns using Think + Layui as the technical basis for development, using the OOP approach to the basic operation of the framework to build, modular development approach to do for the form of functional development. Wuhan class Sen Technology Co., Ltd. LaySNS SQL injection vulnerability, attackers...
SQL Injection Vulnerability in LaySNS of Wuhan Classen Technology Co.
Laysns using Think + Layui as the technical basis for development, using the OOP approach to the basic operation of the framework to build, modular development approach to do for the form of functional development. Wuhan class Sen Technology Co., Ltd. LaySNS SQL injection vulnerability, attackers...
LaySNS suffers from SQL injection vulnerability in in***.php file
LaySNS is a lightweight, integrated content management and community interaction website management system based on ThinkPHP+Layui architecture. LaySNS has a SQL injection vulnerability in the in.php file, which can be exploited by attackers to obtain sensitive database information...
Login Bypass Vulnerability in LaySNS
LaySNS is a lightweight integrated site building system. LaySNS suffers from a login bypass vulnerability, which can be exploited by an attacker to forge the identity of any frontend user to login...
Remote Code Execution Vulnerability in LaySNS (CNVD-2020-21053)
LaySNS is a lightweight integrated site building system. LaySNS suffers from a remote code execution vulnerability that can be exploited by an attacker to gain control of the web server...
Remote Code Execution Vulnerability in LaySNS
LaySNS is a lightweight, integrated content management and community interaction website management system based on ThinkPHP+Layui architecture. LaySNS suffers from a remote code execution vulnerability. An attacker can exploit the vulnerability to execute commands and gain server privileges...
LaySNS has an xss vulnerability
LaySNS is a lightweight, ThinkPHP+Layui-based integrated website management system that integrates content management and community interaction. LaySNS has an xss vulnerability that can be exploited by attackers to inject arbitrary Web script or HTML...
Command Execution Vulnerability in LaySNS_2.2.0
Lightweight content community system Laysns using Think + Layui as the technical basis for development, using the OOP approach to the basic operation of the framework to build. LaySNS2.2.0 has a command execution vulnerability that can be exploited by an attacker to execute commands and obtain...
Override access vulnerability in de*** module of LaySNS lightweight content community system of Wuhan ClassSen Technology
LaySNS is a lightweight, integrated content management and community interaction website management system based on ThinkPHP+Layui architecture. A vulnerability exists in the de module of the LaySNS lightweight content community system in Wuhan Classen Technology. The vulnerability stems from the...
xss vulnerability in Ar***.php of LaySNS lightweight content community system of Wuhan Classen Technology
LaySNS is a lightweight, integrated content management and community interaction website management system based on ThinkPHP+Layui architecture. An xss vulnerability exists in Ar.php in the LaySNS lightweight content community system of Wuhan Classen Technology. The vulnerability stems from the...
Unauthorized access vulnerability in the re**** module of LaySNS lightweight content community system of Wuhan Classen Technology
LaySNS is a lightweight, integrated content management and community interaction website management system based on ThinkPHP+Layui architecture. An unauthorized access vulnerability exists in the re module of the LaySNS lightweight content community system of Wuhan Classen Technology. The...
xss vulnerability in in***.php page of LaySNS lightweight content community system of Wuhan Classen Technology
LaySNS is a lightweight, integrated content management and community interaction website management system based on ThinkPHP+Layui architecture. An xss vulnerability exists in the in.php page of Wuhan Classen Technology's LaySNS lightweight content community system, which stems from the program n...
SQL Injection Vulnerability in in***.php Page in LaySNS
LaySNS is a lightweight, ThinkPHP+Layui-based integrated website management system that integrates content management and community interaction. LaySNS in.php page SQL injection vulnerability, attackers can use the vulnerability to obtain sensitive database information...
Arbitrary File Download Vulnerability in LaySNS v2.40
LaySNS is a lightweight, ThinkPHP+Layui-based integrated website management system that integrates content management and community interaction. LaySNS v2.40 has an arbitrary file download vulnerability that can be exploited by attackers to obtain sensitive file information on the server...
Arbitrary File Write Vulnerability in LaySNS v2.4
LaySNS is a lightweight, ThinkPHP+Layui-based integrated website management system that integrates content management and community interaction. LaySNS v2.4 has an arbitrary file write vulnerability that can be exploited by an attacker to write arbitrary files and gain control of the web server...
SQL Injection Vulnerability in LaySNS v2.4
LaySNS Light Community is a comprehensive website system based on ThinkPHP5+LayUI that integrates content publishing and community exchange. LaySNS v2.4 suffers from a SQL injection vulnerability. An attacker can exploit the vulnerability to obtain sensitive database information...
SQL Injection Vulnerability in LaySNS In***.php File
LaySNS Light Community is a comprehensive website system based on ThinkPHP5+LayUI that integrates content publishing and community exchange. A SQL injection vulnerability exists in the LaySNS In.php file. An attacker can exploit the vulnerability to obtain sensitive database information...
SQL Injection Vulnerability in LaySNS
LaySNS is a lightweight, ThinkPHP+Layui-based integrated website management system that integrates content management and community interaction. LaySNS has a SQL injection vulnerability that can be exploited by attackers to obtain sensitive database information...