CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

NVD•added 2021/03/31 2:15 p.m.•9 views

CVE-2021-28245

PbootCMS 3.0.4 contains a SQL injection vulnerability through index.php via the search parameter that can reveal sensitive information through adding an admin account...

7.5CVSS0.00238EPSS

Prion•added 2021/03/31 2:15 p.m.•11 views

Sql injection

PbootCMS 3.0.4 contains a SQL injection vulnerability through index.php via the search parameter that can reveal sensitive information through adding an admin account...

5CVSS7.7AI score0.00238EPSS

CVE•added 2021/03/31 1:32 p.m.•46 views

CVE-2021-28245

PbootCMS 3.0.4 contains a SQL injection vulnerability in index.php via the search parameter that can be exploited to add an administrator account and reveal sensitive information. This CVE (CVE-2021-28245) is documented across multiple feeds (NVD, Red Hat, CNVD, CVE lists) with consistent descrip...

7.5CVSS7.6AI score0.00238EPSS

Cvelist•added 2021/03/31 1:32 p.m.•13 views

CVE-2021-28245

PbootCMS 3.0.4 contains a SQL injection vulnerability through index.php via the search parameter that can reveal sensitive information through adding an admin account...

7.9AI score0.00238EPSS

CNNVD•added 2021/03/31 12:0 a.m.•4 views

PbootCMS SQL注入漏洞

PbootCMS is a new core open source enterprise building system developed by Avantech. PbootCMS 3.0.4 suffers from a SQL injection vulnerability. Attackers can use the vulnerability to add an administrator account through the index.php search parameter to obtain sensitive information...

7.5CVSS5.9AI score0.00238EPSS

Exploits1References2

CNVD•added 2021/03/04 12:0 a.m.•4 views

Command execution vulnerability in PbootCMS (CNVD-2021-30081)

PbootCMS is an open source and free PHP enterprise web development and construction management system. PbootCMS has a command execution vulnerability that can be exploited by an attacker to execute arbitrary commands...

8AI score

CNVD•added 2021/01/08 12:0 a.m.•3 views

PbootCMS suffers from SQL injection vulnerability (CNVD-2021-03394)

PbootCMS is an open source and free PHP enterprise web development and construction management system. PbootCMS suffers from an SQL injection vulnerability that can be exploited by attackers to obtain sensitive database information...

8AI score

CNVD•added 2020/12/21 12:0 a.m.•1 views

Command execution vulnerability in PbootCMS (CNVD-2021-00794)

PbootCMS is an open source free PHP enterprise web development and construction management system. PbootCMS has a command execution vulnerability that can be exploited by attackers to gain server privileges...

7.7AI score

CNVD•added 2020/12/01 12:0 a.m.•2 views

PbootCMS Cross-Site Request Forgery Vulnerability (CNVD-2020-68549)

PbootCMS is a new core open source enterprise building system developed by Avantech. A cross-site request forgery vulnerability exists in PbootCMS 1.3.2. An attacker can exploit this vulnerability to change user passwords...

6.5CVSS6.8AI score0.00161EPSS

NVD•added 2020/11/30 7:15 p.m.•10 views

CVE-2020-17901

Cross-site request forgery CSRF in PbootCMS 1.3.2 allows attackers to change the password of a user...

6.5CVSS6.7AI score0.00161EPSS

Prion•added 2020/11/30 7:15 p.m.•11 views

Cross site request forgery (csrf)

Cross-site request forgery CSRF in PbootCMS 1.3.2 allows attackers to change the password of a user...

4.3CVSS6.7AI score0.00161EPSS

Cvelist•added 2020/11/30 6:22 p.m.•13 views

CVE-2020-17901

Cross-site request forgery CSRF in PbootCMS 1.3.2 allows attackers to change the password of a user...

6.7AI score0.00161EPSS

CVE•added 2020/11/30 6:22 p.m.•48 views

CVE-2020-17901

CVE-2020-17901 concerns a CSRF flaw in PbootCMS 1.3.2 that enables an attacker to change a user’s password. The Red Hat and CNVD/CVE mirrors corroborate the same description: a cross-site request forgery issue affecting PbootCMS 1.3.2. The available documents do not provide root-cause details, af...

6.5CVSS6.6AI score0.00161EPSS

CNNVD•added 2020/11/30 12:0 a.m.•3 views

PbootCMS 跨站请求伪造漏洞

6.5CVSS6.5AI score0.00161EPSS

Exploits1References2

CNVD•added 2020/07/31 12:0 a.m.•1 views

File Upload Vulnerability in PbootCMS of Hunan Aoyun Network Technology Co.

PbootCMS is the new core and permanent open source free PHP enterprise web development and construction management system. Hunan Avion Network Technology Co., Ltd. PbootCMS file upload vulnerability, attackers can use the vulnerability to obtain server administrative privileges...

7.2AI score

CNVD•added 2020/07/27 12:0 a.m.•2 views

Command Execution Vulnerability in PbootCMS of Hunan Aoyun Network Technology Co.

PbootCMS is an open source and free PHP enterprise web development and construction management system. Hunan Avion Network Technology Co., Ltd PbootCMS has a command execution vulnerability that can be exploited by attackers to execute arbitrary php code and gain server privileges...

8.1AI score

CNVD•added 2020/07/23 12:0 a.m.•1 views

XSS Vulnerability in PbootCMS of Hunan Aoyun Network Technology Company Limited (CNVD-2020-48981)

PbootCMS is a new core and permanent open source free PHP enterprise website development and construction management system , is a set of efficient , simple , strong and free commercial PHP CMS source code , to meet the needs of various types of enterprise website development and construction...

6.4AI score

CNVD•added 2020/07/16 12:0 a.m.•1 views

Command execution vulnerability in PbootCMS frontend Pa***.php file

PbootCMS is an open source free PHP enterprise web development and construction management system. PbootCMS front Pa.php file has a command execution vulnerability. An attacker can exploit the vulnerability to execute arbitrary code...

7.9AI score

CNVD•added 2020/06/02 12:0 a.m.•1 views

PbootCMS suffers from an information disclosure vulnerability (CNVD-2020-33162)

PbootCMS is an open source free PHP enterprise web development and construction management system. PbootCMS has an information leakage vulnerability that can be exploited by attackers to obtain database file information...

6.8AI score