3 matches found
s-cms SQL Injection Vulnerability
s-cms is a content management system CMS based on PHP and MySQL. A SQL injection vulnerability exists in s-cms 3.0. A remote attacker can exploit the vulnerability by providing the '0id' parameter to the member/post.php file or POST data to the member/memberlogin.php file to log into the system...
CVE-2018-18427
s-cms 3.0 allows SQL Injection via the member/post.php 0id parameter or the POST data to member/memberlogin.php...
S-CMS enterprise website builder system/wapmember/post.asp page O_id parameter exists SQL injection vulnerability
S-CMS is a corporate website building system developed by Zibo Shining Network Technology Co. There is a SQL injection vulnerability in the Oid parameter of the /wapmember/post.asp page of the S-CMS enterprise website builder system. As the program fails to filter the data submitted by users, it...