9 matches found
CVE-2024-46103
SEMCMS 4.8 is vulnerable to SQL Injection via SEMCMSMain.php...
CVE-2024-28405
SEMCMS 4.8 is vulnerable to Incorrect Access Control. The code installs SEMCMSFuntion.php before checking if the admin is a valid user in the admin page because authentication function is called from there, users gain admin privileges...
CVE-2024-13193
A vulnerability has been found in SEMCMS up to 4.8 and classified as critical. Affected by this vulnerability is an unknown functionality of the file SEMCMSImages.php of the component Image Library Management Page. The manipulation leads to sql injection. The attack can be launched remotely. The...
CVE-2024-46103
SEMCMS 4.8 is vulnerable to SQL Injection via SEMCMSMain.php...
CVE-2024-46103
SEMCMS 4.8 is vulnerable to SQL Injection via SEMCMSMain.php...
CVE-2024-46103
SEMCMS 4.8 is vulnerable to SQL Injection via SEMCMSMain.php...
CVE-2024-31012
An issue was discovered in SEMCMS v.4.8, allows remote attackers to execute arbitrary code, escalate privileges, and obtain sensitive information via the upload.php file...
CVE-2024-28405
SEMCMS 4.8 is vulnerable to Incorrect Access Control. The code installs SEMCMSFuntion.php before checking if the admin is a valid user in the admin page because authentication function is called from there, users gain admin privileges...
CVE-2023-50563
Semcms v4.8 was discovered to contain a SQL injection vulnerability via the AID parameter at SEMCMSFunction.php...