581 matches found
CVE-2025-51652
SemCms v5.0 was discovered to contain a SQL injection vulnerability via the pid parameter at SEMCMSCategories.php...
CVE-2025-51653
SemCms v5.0 was discovered to contain a SQL injection vulnerability via the pid parameter at SEMCMSct.php...
CVE-2025-51653
SemCms v5.0 was discovered to contain a SQL injection vulnerability via the pid parameter at SEMCMSct.php...
CVE-2025-51652
SemCms v5.0 was discovered to contain a SQL injection vulnerability via the pid parameter at SEMCMSCategories.php...
CVE-2025-51654
SemCms v5.0 was discovered to contain a SQL injection vulnerability via the pid parameter at SEMCMSInfocategories.php...
CVE-2025-51654
SemCms v5.0 was discovered to contain a SQL injection vulnerability via the pid parameter at SEMCMSInfocategories.php...
SEMCMS 安全漏洞
SEMCMS is SEMCMS open source content management system CMS for foreign trade websites that supports multiple languages. A security vulnerability exists in SEMCMS v5.0, which originates from SQL injection of the lgid parameter in SEMCMSProducts.php...
SEMCMS 安全漏洞
SEMCMS is SEMCMS open source content management system CMS for foreign trade websites that supports multi-language. A security vulnerability exists in SEMCMS v5.0, which originates from SQL injection of the pid parameter in SEMCMSInfocategories.php...
CVE-2025-51655
CVE-2025-51655 relates to SemCms v5.0, with a SQL injection vulnerability exposed via the pid parameter in SEMCMS_Quanxian.php. The issue is documented across multiple sources (NVD/Red Hat/CVE list) with a CVSS v3.1 base score of 5.4 (MEDIUM) and attack vector NETWORK, low complexity, low privile...
CVE-2025-51660
SemCms v5.0 contains a SQL injection vulnerability in the lgid parameter of SEMCMS_Products.php. The issue is documented across multiple sources and is confirmed by CVE-2025-51660 with CVSSv3.1 metrics indicating a Network attack vector, Low attack complexity, Low privileges required, and impacts...
CVE-2025-51652
Summary: CVE-2025-51652 affects SemCms v5.0, where a SQL injection can be triggered via the pid parameter in SEMCMS_Categories.php. The vulnerability is confirmed across multiple sources (NVD, Red Hat, CVE list, PT Security, CNNVD, etc.). Impact: confidentiality and integrity impacts are listed a...
CVE-2025-51657
SemCms v5.0 is affected by a SQL injection vulnerability in the lgid parameter of SEMCMS_Link.php. Root cause: unsanitized input leads to potential data disclosure/integrity impact (C/L I/L A:N). Exploitation status not described in provided documents; no in-wild exploit details are given. Releva...
CVE-2025-51653
CVE-2025-51653 affects SemCms v5.0, where a SQL injection is possible through the pid parameter in SEMCMS_ct.php. The issue, described across multiple feeds (NVD, Red Hat, CVE listing, and PT Security), has a CVSS v3.1 base score of 5.4 (Medium) with network attack vector, low attack complexity, ...
CVE-2025-51657
SemCms v5.0 was discovered to contain a SQL injection vulnerability via the lgid parameter at SEMCMSLink.php...
PT-2025-29497 · Semcms · Semcms
Name of the Vulnerable Software and Affected Versions: SemCms version 5.0 Description: SemCms version 5.0 contains a SQL injection issue via the lgid parameter at the SEMCMS Link.php file. Recommendations: As a temporary workaround, consider restricting access to the SEMCMS Link.php file to...
CVE-2025-51657
SemCms v5.0 was discovered to contain a SQL injection vulnerability via the lgid parameter at SEMCMSLink.php...
CVE-2025-51654
SemCms v5.0 was discovered to contain a SQL injection vulnerability via the pid parameter at SEMCMSInfocategories.php...
PT-2025-29496 · Semcms · Semcms
Name of the Vulnerable Software and Affected Versions: SemCms version 5.0 Description: SemCms version 5.0 contains a SQL injection vulnerability through the ID parameter at the SEMCMS Link.php file. Recommendations: As a temporary workaround, consider restricting access to the SEMCMS Link.php fil...
CVE-2025-51654
SemCms v5.0 is vulnerable to SQL injection via the pid parameter in SEMCMS_Infocategories.php. Root cause: unsafely concatenated pid in SQL queries. Impact: potential data exposure or manipulation with at least low confidentiality/integrity risk per CVSS, no availability impact. Exploitation stat...
CVE-2025-51659
SemCms v5.0 is affected by a SQL injection vulnerability via the ID parameter in SEMCMS_Products.php. The CVE entry documents a low-severity issue (CVSS v3.1: 5.4, Confidentiality/Integrity impact L) that could enable unauthorized data access or modification, with no availability impact reported....