PbootCMS V1.1.7 SQL Injection Vulnerability in Li***.php Page

PbootCMS is a new core open source enterprise building system developed by Avantech. PbootCMS V1.1.7 Li.php page SQL injection vulnerability. An attacker can exploit the vulnerability to obtain sensitive database information...

SQL injection vulnerability in PbootCMS V1.1.7 Si***.php page (CNVD-2018-17749)

PbootCMS is a new core open source enterprise building system developed by Avantech. PbootCMS V1.1.7 Si.php page has a SQL injection vulnerability. An attacker can exploit the vulnerability to obtain sensitive information in the database...

PbootCMS V1.1.7 SQL Injection Vulnerability in Do***.php Page

PbootCMS is a new core open source enterprise building system developed by Avantech. PbootCMS V1.1.7 Do.php page has a SQL injection vulnerability. An attacker can exploit the vulnerability to obtain sensitive information from the database...

PbootCMS V1.1.7 SQL Injection Vulnerability in Fo***.php Page

PbootCMS is a new core open source enterprise building system developed by Avantech. PbootCMS V1.1.7 Fo.php page has a SQL injection vulnerability. An attacker can exploit the vulnerability to obtain sensitive database information...

PbootCMS V1.1.6-20180721 Code Execution Vulnerability in the Frontend

PbootCMS is an open source PHP enterprise web development and construction management system. A code execution vulnerability exists in the frontend of PbootCMS version V1.1.6-20180721, which can be exploited by an attacker to execute remote code...

Code Execution Vulnerability in PbootCMS Version V1.1.4

PbootCMS is an efficient, simple, strong open source PHP enterprise website development and construction management system. A code execution vulnerability exists in PbootCMS version V1.1.4, which can be exploited by attackers to execute remote code...

File Inclusion Vulnerability in PbootCMS Version 1.1.4

PbootCMS is a new core open source enterprise building system developed by Avantech. A file inclusion vulnerability exists in PbootCMS v1.1.4. An attacker can exploit the vulnerability to include malicious files and gain control of the web server...

PbootCMS 'scode' Parameter SQL Injection Vulnerability

PbootCMS is an open source enterprise building content management system CMS developed using the PHP language. A SQL injection vulnerability exists in PbootCMS version 1.0.9. A remote attacker can exploit this vulnerability by sending the 'scode' parameter to the...

CVE-2018-11369

An issue was discovered in PbootCMS v1.0.9. There is a SQL Injection that can get important information from the database via the \apps\home\controller\ParserController.php scode parameter...

CVE-2018-11369

An issue was discovered in PbootCMS v1.0.9. There is a SQL Injection that can get important information from the database via the \apps\home\controller\ParserController.php scode parameter...

Sql injection

An issue was discovered in PbootCMS v1.0.9. There is a SQL Injection that can get important information from the database via the \apps\home\controller\ParserController.php scode parameter...

CVE-2018-11369

An issue was discovered in PbootCMS v1.0.9. There is a SQL Injection that can get important information from the database via the \apps\home\controller\ParserController.php scode parameter...

CVE-2018-11369

PbootCMS v1.0.9 is affected by CVE-2018-11369. The vulnerability is a SQL injection in the ParserController.php, triggered via the scode parameter under apps/home/controller. The underlying issue is unsafe handling of the scode input, enabling an attacker to retrieve data from the database. Docum...

PbootCMS v1.0.9 suffers from SQL injection vulnerability

PbootCMS is a new core open source enterprise building system developed by Avantech. PbootCMS v1.0.9 version exists SQL injection vulnerability. Attackers can use the vulnerability to control parameters to achieve SQL injection to obtain important information about the database...

PbootCMS Cross-Site Request Forgery Vulnerability (CNVD-2018-12919)

PbootCMS is an open source enterprise building content management system CMS developed using the PHP language. A cross-site request forgery vulnerability exists in the apps/admin/controller/system/RoleController.php file in PbootCMS version 1.0.7. A remote attacker can exploit this vulnerability ...

CVE-2018-11018

An issue was discovered in PbootCMS v1.0.7. Cross-site request forgery CSRF vulnerability in apps/admin/controller/system/RoleController.php allows remote attackers to add administrator accounts via admin.php/role/add.html...

CVE-2018-11018

An issue was discovered in PbootCMS v1.0.7. Cross-site request forgery CSRF vulnerability in apps/admin/controller/system/RoleController.php allows remote attackers to add administrator accounts via admin.php/role/add.html...

Cross site request forgery (csrf)

An issue was discovered in PbootCMS v1.0.7. Cross-site request forgery CSRF vulnerability in apps/admin/controller/system/RoleController.php allows remote attackers to add administrator accounts via admin.php/role/add.html...

CVE-2018-11018

PbootCMS v1.0.7 contains a Cross‑Site Request Forgery (CSRF) vulnerability in apps/admin/controller/system/RoleController.php that enables remote attackers to add administrator accounts via admin.php/role/add.html. Affected software: PbootCMS 1.0.7. Root cause: CSRF in role management workflow al...

CVE-2018-11018

An issue was discovered in PbootCMS v1.0.7. Cross-site request forgery CSRF vulnerability in apps/admin/controller/system/RoleController.php allows remote attackers to add administrator accounts via admin.php/role/add.html...