EUVD-2024-16795

Malicious code in bioql PyPI...

EUVD-2024-51113

Malicious code in bioql PyPI...

EUVD-2024-51109

Malicious code in bioql PyPI...

EUVD-2025-11844

Malicious code in bioql PyPI...

CVE-2025-46109

SQL Injection vulnerability in pbootCMS v.3.2.5 and v.3.2.10 allows a remote attacker to obtain sensitive information via a crafted GET request...

SQL Injection Vulnerability in PbootCMS

PbootCMS is the new core and permanent open source free PHP enterprise web development and construction management system. PbootCMS SQL injection vulnerability , attackers can exploit the vulnerability to obtain sensitive database information...

CVE-2025-46109

SQL Injection vulnerability in pbootCMS v.3.2.5 and v.3.2.10 allows a remote attacker to obtain sensitive information via a crafted GET request...

CVE-2025-46109

SQL Injection vulnerability in pbootCMS v.3.2.5 and v.3.2.10 allows a remote attacker to obtain sensitive information via a crafted GET request...

PbootCMS 安全漏洞

PbootCMS is a PbootCMS open source content management system CMS for building websites for open source businesses developed using the PHP language. A security vulnerability exists in PbootCMS version v3.2.5 and v3.2.10, which stems from uncleaned inputs and may lead to SQL injection attacks...

CVE-2025-46109

SQL Injection vulnerability in pbootCMS v.3.2.5 and v.3.2.10 allows a remote attacker to obtain sensitive information via a crafted GET request...

CVE-2025-46109

CVE-2025-46109 affects pbootCMS versions 3.2.5 and 3.2.10, where uncleaned inputs enable SQL injection via a crafted GET request. Several connected sources (Red Hat, CNNVD, PT Security, OSV/NVD) corroborate a remote attacker can obtain sensitive information. The root cause is an input handling fl...

CVE-2025-46109

SQL Injection vulnerability in pbootCMS v.3.2.5 and v.3.2.10 allows a remote attacker to obtain sensitive information via a crafted GET request...

PT-2025-26169 · Pbootcms · Pbootcms

Name of the Vulnerable Software and Affected Versions: pbootCMS versions 3.2.5 through 3.2.10 Description: The issue allows a remote attacker to obtain sensitive information via a crafted GET request. This is a SQL Injection vulnerability, which means an attacker can inject malicious SQL code to...

CVE-2024-1018

A vulnerability classified as problematic has been found in PbootCMS 3.2.5-20230421. Affected is an unknown function of the file /admin.php?p=/Area/indextab=t2. The manipulation of the argument name leads to cross site scripting. It is possible to launch the attack remotely. The exploit has been...

CVE-2024-12793

A vulnerability, which was classified as problematic, has been found in PbootCMS up to 5.2.3. Affected by this issue is some unknown functionality of the file apps/home/controller/IndexController.php. The manipulation of the argument tag leads to path traversal. The attack may be launched remotel...

CVE-2024-12789

A vulnerability was found in PbootCMS up to 3.2.3. It has been classified as critical. This affects an unknown part of the file apps/home/controller/IndexController.php. The manipulation of the argument tag leads to code injection. It is possible to initiate the attack remotely. The exploit has...

CVE-2024-42930

PbootCMS 3.2.8 is vulnerable to URL Redirect...

CVE-2022-32417

PbootCMS v3.1.2 was discovered to contain a remote code execution RCE vulnerability via the function parserIfLabel at function.php...

CVE-2020-18456

Cross Site Scripting XSS vulnerability exists in PbootCMS v1.3.7 via the title parameter in the mod function in SingleController.php...

CVE-2020-22535

Incorrect Access Control vulnerability in PbootCMS 2.0.6 via the list parameter in the update function in upgradecontroller.php...