Lucene search
K

125 matches found

Cvelist
Cvelist
added 2023/09/29 1:31 p.m.28 views

CVE-2023-5262 OpenRapid RapidCMS uploadicon.php isImg unrestricted upload

A vulnerability has been found in OpenRapid RapidCMS 1.3.1 and classified as critical. Affected by this vulnerability is the function isImg of the file /admin/config/uploadicon.php. The manipulation of the argument fileName leads to unrestricted upload. The attack can be launched remotely. The...

6.5CVSS9AI score0.00639EPSS
Exploits1References4
CVE
CVE
added 2023/09/29 1:31 p.m.68 views

CVE-2023-5262

OpenRapid RapidCMS 1.3.1 is affected by a vulnerability in the isImg function of /admin/config/uploadicon.php, where manipulating the fileName parameter leads to unrestricted upload. Several sources (NVD, CVE record, OSV, CVE listings) describe remote exploitation with public disclosure (CVE-2023...

8.8CVSS7.6AI score0.00639EPSS
Exploits1References4Affected Software1
OSV
OSV
added 2023/09/29 1:31 p.m.19 views

CVE-2023-5262 OpenRapid RapidCMS uploadicon.php isImg unrestricted upload

A vulnerability has been found in OpenRapid RapidCMS 1.3.1 and classified as critical. Affected by this vulnerability is the function isImg of the file /admin/config/uploadicon.php. The manipulation of the argument fileName leads to unrestricted upload. The attack can be launched remotely. The...

6.3CVSS6.3AI score0.00639EPSS
Exploits1References6
NVD
NVD
added 2023/09/29 12:15 p.m.10 views

CVE-2023-5258

A vulnerability classified as critical has been found in OpenRapid RapidCMS 1.3.1. This affects an unknown part of the file /resource/addgood.php. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the publ...

9.8CVSS7.4AI score0.00598EPSS
Exploits1References4
Prion
Prion
added 2023/09/29 12:15 p.m.17 views

Sql injection

A vulnerability classified as critical has been found in OpenRapid RapidCMS 1.3.1. This affects an unknown part of the file /resource/addgood.php. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the publ...

6.5CVSS9.7AI score0.00598EPSS
Exploits1References4Affected Software1
CVE
CVE
added 2023/09/29 11:31 a.m.51 views

CVE-2023-5258

OpenRapid RapidCMS 1.3.1 is affected by a SQL injection in /resource/addgood.php via the id parameter. The issue is exploitable remotely and has public material (VDB-240867). Multiple sources confirm the vulnerability without patch/version details. Remediation guidance in PT-2023-31980 suggests d...

9.8CVSS8.3AI score0.00598EPSS
Exploits1References4Affected Software1
Cvelist
Cvelist
added 2023/09/29 11:31 a.m.22 views

CVE-2023-5258 OpenRapid RapidCMS addgood.php sql injection

A vulnerability classified as critical has been found in OpenRapid RapidCMS 1.3.1. This affects an unknown part of the file /resource/addgood.php. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the publ...

6.5CVSS10AI score0.00598EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2023/09/29 11:31 a.m.19 views

CVE-2023-5258 OpenRapid RapidCMS addgood.php sql injection

A vulnerability classified as critical has been found in OpenRapid RapidCMS 1.3.1. This affects an unknown part of the file /resource/addgood.php. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the publ...

6.5CVSS7.4AI score0.00598EPSS
Exploits1References4
OSV
OSV
added 2023/09/29 11:31 a.m.18 views

CVE-2023-5258 OpenRapid RapidCMS addgood.php sql injection

A vulnerability classified as critical has been found in OpenRapid RapidCMS 1.3.1. This affects an unknown part of the file /resource/addgood.php. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the publ...

6.3CVSS6.4AI score0.00598EPSS
Exploits1References6
CNNVD
CNNVD
added 2023/09/29 12:0 a.m.4 views

OpenRapid RapidCMS SQL Injection Vulnerability

OpenRapid RapidCMS is OpenRapid open source a fast and easy to use CMS system. A SQL injection vulnerability exists in OpenRapid RapidCMS version 1.3.1, which stems from an incorrect manipulation of the parameter id that can lead to sql injection...

9.8CVSS8.3AI score0.00598EPSS
Exploits1References5
CNNVD
CNNVD
added 2023/09/29 12:0 a.m.4 views

OpenRapid RapidCMS Code Issue Vulnerability

OpenRapid RapidCMS is OpenRapid open source a fast and easy to use CMS system. A code issue vulnerability exists in OpenRapid RapidCMS version 1.3.1, which stems from an incorrect manipulation of the parameter fileName that can lead to unrestricted uploads...

8.8CVSS7AI score0.00639EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2023/09/29 12:0 a.m.4 views

PT-2023-31980 · Openrapid · Openrapid Rapidcms

Name of the Vulnerable Software and Affected Versions: OpenRapid RapidCMS version 1.3.1 Description: A critical vulnerability has been found in OpenRapid RapidCMS. This issue affects an unknown part of the file /resource/addgood.php. The manipulation of the argument id leads to sql injection. It ...

9.8CVSS7AI score0.00598EPSS
Exploits1References9
Positive Technologies
Positive Technologies
added 2023/09/29 12:0 a.m.9 views

PT-2023-31983 · Openrapid · Openrapid Rapidcms

Name of the Vulnerable Software and Affected Versions: OpenRapid RapidCMS version 1.3.1 Description: A critical vulnerability has been found in OpenRapid RapidCMS, affecting the isImg function of the file /admin/config/uploadicon.php. The manipulation of the fileName argument leads to unrestricte...

8.8CVSS6.5AI score0.00639EPSS
Exploits1References9
NVD
NVD
added 2023/09/18 5:15 a.m.23 views

CVE-2023-5033

A vulnerability classified as critical has been found in OpenRapid RapidCMS 1.3.1. This affects an unknown part of the file /admin/category/cate-edit-run.php. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed...

7.2CVSS6.9AI score0.00578EPSS
Exploits1References3
Prion
Prion
added 2023/09/18 5:15 a.m.16 views

Sql injection

A vulnerability classified as critical has been found in OpenRapid RapidCMS 1.3.1. This affects an unknown part of the file /admin/category/cate-edit-run.php. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed...

6.5CVSS7.3AI score0.00578EPSS
Exploits1References3Affected Software1
Vulnrichment
Vulnrichment
added 2023/09/18 4:31 a.m.14 views

CVE-2023-5033 OpenRapid RapidCMS cate-edit-run.php sql injection

A vulnerability classified as critical has been found in OpenRapid RapidCMS 1.3.1. This affects an unknown part of the file /admin/category/cate-edit-run.php. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed...

6.5CVSS7.4AI score0.00578EPSS
Exploits1References3
Cvelist
Cvelist
added 2023/09/18 4:31 a.m.27 views

CVE-2023-5033 OpenRapid RapidCMS cate-edit-run.php sql injection

A vulnerability classified as critical has been found in OpenRapid RapidCMS 1.3.1. This affects an unknown part of the file /admin/category/cate-edit-run.php. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed...

6.5CVSS7.5AI score0.00578EPSS
Exploits1References3
CVE
CVE
added 2023/09/18 4:31 a.m.54 views

CVE-2023-5033

OpenRapid RapidCMS 1.3.1 contains a SQL injection in /admin/category/cate-edit-run.php triggered by manipulating the id argument. Exploitation can be remote; multiple sources (NVD, Red Hat, CVE list, OSV, CVSS vectors) confirm a high-impact vulnerability (CVE-2023-5033) with a public exploit path...

7.2CVSS6.9AI score0.00578EPSS
Exploits1References3Affected Software1
OSV
OSV
added 2023/09/18 4:31 a.m.13 views

CVE-2023-5033 OpenRapid RapidCMS cate-edit-run.php sql injection

A vulnerability classified as critical has been found in OpenRapid RapidCMS 1.3.1. This affects an unknown part of the file /admin/category/cate-edit-run.php. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed...

6.3CVSS6.4AI score0.00578EPSS
Exploits1References5
NVD
NVD
added 2023/09/18 4:15 a.m.11 views

CVE-2023-5032

A vulnerability was found in OpenRapid RapidCMS 1.3.1. It has been rated as critical. Affected by this issue is some unknown functionality of the file /admin/article/article-edit-run.php. The manipulation of the argument id leads to sql injection. The attack may be launched remotely. The exploit...

7.2CVSS6.8AI score0.00539EPSS
Exploits1References3
Rows per page
Query Builder