CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

392 matches found

Positive Technologies•added 2023/02/03 12:0 a.m.•2 views

PT-2023-12321 · Pbootcms · Pbootcms

Name of the Vulnerable Software and Affected Versions: PbootCMS version 3.0.5 Description: A SQL injection issue exists, allowing remote attackers to execute arbitrary SQL commands by sending a crafted GET request. Recommendations: For PbootCMS version 3.0.5, update to a newer version that contai...

9.8CVSS10AI score0.00858EPSS

Exploits1References3

Cvelist•added 2023/02/03 12:0 a.m.•10 views

CVE-2021-37497

SQL injection vulnerability in route of PbootCMS 3.0.5 allows remote attackers to run arbitrary SQL commands via crafted GET request...

10AI score0.00858EPSS

Exploits1References2

CVE•added 2023/02/03 12:0 a.m.•58 views

CVE-2021-37497

CVE-2021-37497 affects PbootCMS 3.0.5. The vulnerability is a SQL injection in a route that allows remote attackers to execute arbitrary SQL via a crafted GET request. Impact is described as high (C/H/I/H, CVSS 3.1 base 9.8; network access, no user interaction required). A patch is typically rele...

9.8CVSS9.8AI score0.00858EPSS

Exploits1References2Affected Software1

Check Point Advisories•added 2022/07/27 12:0 a.m.•24 views

PbootCMS Remote Code Execution (CVE-2022-32417)

A remote code execution vulnerability exists in PbootCMS. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

7.5CVSS5.3AI score0.42668EPSS

Exploits1

CNVD•added 2022/07/15 12:0 a.m.•35 views

PbootCMS Code Injection Vulnerability

PbootCMS is a new core and permanent open source free PHP enterprise website development and construction management system , is a set of efficient , simple , strong and free commercial PHP CMS source code , to meet the needs of various types of enterprise website development and construction...

9.8CVSS9.8AI score0.42668EPSS

Exploits1References1

OSV•added 2022/07/14 10:15 p.m.•2 views

CVE-2022-32417

PbootCMS v3.1.2 was discovered to contain a remote code execution RCE vulnerability via the function parserIfLabel at function.php...

9.8CVSS6.4AI score

Exploits0References1

NVD•added 2022/07/14 10:15 p.m.•12 views

CVE-2022-32417

PbootCMS v3.1.2 was discovered to contain a remote code execution RCE vulnerability via the function parserIfLabel at function.php...

9.8CVSS0.42668EPSS

Exploits1References1

ATTACKERKB•added 2022/07/14 10:15 p.m.•0 views

CVE-2022-32417

PbootCMS v3.1.2 was discovered to contain a remote code execution RCE vulnerability via the function parserIfLabel at function.php...

9.8CVSS8AI score0.42668EPSS

Exploits1References2

Prion•added 2022/07/14 10:15 p.m.•24 views

Remote code execution

PbootCMS v3.1.2 was discovered to contain a remote code execution RCE vulnerability via the function parserIfLabel at function.php...

7.5CVSS9.8AI score0.42668EPSS

Exploits1References1Affected Software1

CVE•added 2022/07/14 9:40 p.m.•231 views

CVE-2022-32417

PbootCMS v3.1.2 contains a remote code execution (RCE) vulnerability in parserIfLabel() within function.php, as identified for CVE-2022-32417. The affected software is PbootCMS (core version 3.1.2). Reported impact includes remote code execution with potential full host compromise; CVSS v3.1 vect...

9.8CVSS9.9AI score0.42668EPSS

Exploits1References1Affected Software1

Cvelist•added 2022/07/14 9:40 p.m.•14 views

CVE-2022-32417

PbootCMS v3.1.2 was discovered to contain a remote code execution RCE vulnerability via the function parserIfLabel at function.php...

10AI score0.42668EPSS

Exploits1References1

CNNVD•added 2022/07/14 12:0 a.m.•1 views

PbootCMS 代码注入漏洞

9.8CVSS5.9AI score0.42668EPSS

Exploits1References3

OSV•added 2022/06/02 2:15 p.m.•5 views

CVE-2020-20971

Cross Site Request Forgery CSRF vulnerability in PbootCMS v2.0.3 via /admin.php?p=/User/index...

8.8CVSS8.9AI score0.00141EPSS

Exploits1References1

NVD•added 2022/06/02 2:15 p.m.•10 views

CVE-2020-20971

Cross Site Request Forgery CSRF vulnerability in PbootCMS v2.0.3 via /admin.php?p=/User/index...

8.8CVSS0.00141EPSS

Exploits1References1

Prion•added 2022/06/02 2:15 p.m.•13 views

Cross site request forgery (csrf)

Cross Site Request Forgery CSRF vulnerability in PbootCMS v2.0.3 via /admin.php?p=/User/index...

6.8CVSS8.8AI score0.00141EPSS

Exploits1References1Affected Software1

CNNVD•added 2022/06/02 12:0 a.m.•2 views

PbootCMS 跨站请求伪造漏洞

PbootCMS is PbootCMS individual developers of an open source enterprise website content management system CMS developed using the PHP language. A security vulnerability exists in PbootCMS v2.0.3, which can be exploited by an attacker to view the added system administrators via the...

8.8CVSS7.9AI score0.00141EPSS

Exploits1References2

Cvelist•added 2022/06/01 2:31 p.m.•13 views

CVE-2020-20971

Cross Site Request Forgery CSRF vulnerability in PbootCMS v2.0.3 via /admin.php?p=/User/index...

8.9AI score0.00141EPSS

Exploits1References1

CVE•added 2022/06/01 2:31 p.m.•33 views

CVE-2020-20971

CVE-2020-20971 describes a CSRF vulnerability in PbootCMS v2.0.3, exploitable via /admin.php?p=/User/index. The CVSS 3.1 base score is 8.8 (HIGH) with network access, low attack complexity, no privileges required but user interaction required, and impacts on confidentiality, integrity, and availa...

8.8CVSS8.7AI score0.00141EPSS

Exploits1References1Affected Software1

OSV•added 2021/08/12 6:15 p.m.•1 views

CVE-2020-18456

Cross Site Scripting XSS vulnerability exists in PbootCMS v1.3.7 via the title parameter in the mod function in SingleController.php...

4.8CVSS5.8AI score0.00235EPSS

Exploits1References1

NVD•added 2021/08/12 6:15 p.m.•8 views

CVE-2020-18456

Cross Site Scripting XSS vulnerability exists in PbootCMS v1.3.7 via the title parameter in the mod function in SingleController.php...

4.8CVSS0.00235EPSS

Exploits1References1