CVE-2026-4510

A weakness has been identified in PbootCMS up to 3.2.12. This impacts the function alertlocation of the file apps/home/controller/MemberController.php of the component Parameter Handler. This manipulation of the argument backurl causes cross site scripting. Remote exploitation of the attack is...

CVE-2026-4510

CVE-2026-4510 affects PbootCMS up to 3.2.12. The flaw exists in the Parameter Handler’s function alert_location within apps/home/controller/MemberController.php, where manipulating the backurl argument enables cross-site scripting. Remote exploitation is possible and an exploit has been made publ...

PT-2026-26690

Name of the Vulnerable Software and Affected Versions PbootCMS versions prior to 3.2.12 Description A flaw exists in PbootCMS up to version 3.2.12 related to the manipulation of the Username argument within the checkUsername function located in the file apps/home/controller/MemberController.php o...

PbootCMS SQL注入漏洞

PbootCMS is an open-source enterprise website content management system developed using the PHP language. Versions of PbootCMS 3.2.12 and earlier have a SQL injection vulnerability. This vulnerability stems from incorrect handling of the parameter Username in the checkUsername function within the...

PT-2025-53413

Name of the Vulnerable Software and Affected Versions youlaitech youlai-mall versions 1.0.0 through 2.0.0 Description A weakness exists that causes improper access controls. The issue impacts the getMemberByMobile function within the file...

Arbitrary code execution vulnerability in FineCms backend controllers\admin\MemberController.php page

FineCMS is a content management system developed using MVC architecture and PDO database interface. An arbitrary code execution vulnerability exists in the Finecms backend controllers\admin\ MemberController.php page. Because the submitted data is not effectively filtered, an attacker can exploit...

zswin 1.6.3 /App/Api/Controller/MemberController.class.php 信息泄漏漏洞

No description provided by source...