50 matches found
EUVD-2023-34837
Malicious code in bioql PyPI...
EUVD-2024-47386
Malicious code in bioql PyPI...
EUVD-2024-47369
Malicious code in bioql PyPI...
CVE-2024-6241
A vulnerability was found in Pear Admin Boot up to 2.0.2 and classified as critical. This issue affects the function getDictItems of the file /system/dictData/getDictItems/. The manipulation with the input ,user,1,1 leads to sql injection. The attack may be initiated remotely. The exploit has bee...
CVE-2024-6266
A vulnerability classified as critical has been found in Pear Admin Boot up to 2.0.2. Affected is an unknown function of the file /system/dictData/loadDictItem. The manipulation leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and...
CVE-2023-30417
A cross-site scripting XSS vulnerability in Pear-Admin-Boot up to v2.0.2 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Title of a private message...
CVE-2021-29377
Pear Admin Think through 2.1.2 has an arbitrary file upload vulnerability that allows attackers to execute arbitrary code remotely. A .php file can be uploaded via admin.php/index/upload because app/common/service/UploadService.php mishandles fileExt...
CVE-2021-29378
SQL Injection in pear-admin-think version 2.1.2, allows attackers to execute arbitrary code and escalate privileges via crafted GET request to Crud.php...
CVE-2024-6266
A vulnerability classified as critical has been found in Pear Admin Boot up to 2.0.2. Affected is an unknown function of the file /system/dictData/loadDictItem. The manipulation leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and...
CVE-2024-6266
A vulnerability classified as critical has been found in Pear Admin Boot up to 2.0.2. Affected is an unknown function of the file /system/dictData/loadDictItem. The manipulation leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and...
CVE-2024-6266
Pear Admin Boot (up to version 2.0.2) is affected by a SQL injection in the /system/dictData/loadDictItem function caused by improper input handling. This enables remote exploitation, with public exploits disclosed. Remediation: upgrade to a version later than 2.0.2; as a temporary measure, consi...
CVE-2024-6266 Pear Admin Boot loadDictItem sql injection
A vulnerability classified as critical has been found in Pear Admin Boot up to 2.0.2. Affected is an unknown function of the file /system/dictData/loadDictItem. The manipulation leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and...
CVE-2024-6266 Pear Admin Boot loadDictItem sql injection
A vulnerability classified as critical has been found in Pear Admin Boot up to 2.0.2. Affected is an unknown function of the file /system/dictData/loadDictItem. The manipulation leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and...
Pear Admin Boot Security Vulnerability
Pear Admin Boot is an out-of-the-box Spring rapid development platform for the Pear Admin community in China. A security vulnerability exists in Pear Admin Boot version 2.0.2 and prior versions. An attacker exploited the vulnerability to perform a SQL injection attack...
PT-2024-37496 · Unknown · Pear Admin Boot
Name of the Vulnerable Software and Affected Versions: Pear Admin Boot versions up to 2.0.2 Description: A critical vulnerability has been found in Pear Admin Boot, affecting an unknown function of the file /system/dictData/loadDictItem. The manipulation leads to sql injection, and it is possible...
CVE-2024-6241
A vulnerability was found in Pear Admin Boot up to 2.0.2 and classified as critical. This issue affects the function getDictItems of the file /system/dictData/getDictItems/. The manipulation with the input ,user,1,1 leads to sql injection. The attack may be initiated remotely. The exploit has bee...
CVE-2024-6241
A vulnerability was found in Pear Admin Boot up to 2.0.2 and classified as critical. This issue affects the function getDictItems of the file /system/dictData/getDictItems/. The manipulation with the input ,user,1,1 leads to sql injection. The attack may be initiated remotely. The exploit has bee...
CVE-2024-6241 Pear Admin Boot getDictItems sql injection
A vulnerability was found in Pear Admin Boot up to 2.0.2 and classified as critical. This issue affects the function getDictItems of the file /system/dictData/getDictItems/. The manipulation with the input ,user,1,1 leads to sql injection. The attack may be initiated remotely. The exploit has bee...
CVE-2024-6241 Pear Admin Boot getDictItems sql injection
A vulnerability was found in Pear Admin Boot up to 2.0.2 and classified as critical. This issue affects the function getDictItems of the file /system/dictData/getDictItems/. The manipulation with the input ,user,1,1 leads to sql injection. The attack may be initiated remotely. The exploit has bee...
CVE-2024-6241
Pear Admin Boot up to 2.0.2 has a SQL injection in getDictItems (/system/dictData/getDictItems/). The attack is triggered by crafted input (,user(),1,1) and can be executed remotely. Exploit has been disclosed publicly. No remediation details are provided in the connected documents.