Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

33 matches found

Prion
Prionadded 2023/09/27 10:15 p.m.12 views

Sql injection

SQL injection can exist in a newly created part of the SpringbootCMS 1.0 background, and the parameters submitted by users are not filtered. As a result, special characters in parameters destroy the original logic of SQL statements. Attackers can use this vulnerability to execute any SQL statemen...

6.5CVSS9AI score0.00167EPSS
Exploits1References2Affected Software1
Cvelist
Cvelistadded 2023/09/27 12:0 a.m.11 views

CVE-2023-43192

SQL injection can exist in a newly created part of the SpringbootCMS 1.0 background, and the parameters submitted by users are not filtered. As a result, special characters in parameters destroy the original logic of SQL statements. Attackers can use this vulnerability to execute any SQL statemen...

9.3AI score0.00167EPSS
Exploits1References2
CVE
CVEadded 2023/09/27 12:0 a.m.44 views

CVE-2023-43191

CVE-2023-43191 affects SpringbootCMS 1.0 and related JFinalCMS entries, with a stored XSS condition: malicious code embedded in a foreground message saved to the database can execute when users view comments. The Red Hat advisory and multiple CVE records describe the attack as HTML-embedded scrip...

5.4CVSS5.5AI score0.00176EPSS
Exploits1References1Affected Software1
Vulnrichment
Vulnrichmentadded 2023/09/27 12:0 a.m.7 views

CVE-2023-43192

SQL injection can exist in a newly created part of the SpringbootCMS 1.0 background, and the parameters submitted by users are not filtered. As a result, special characters in parameters destroy the original logic of SQL statements. Attackers can use this vulnerability to execute any SQL statemen...

8AI score0.00167EPSS
Exploits1References2
CVE
CVEadded 2023/09/27 12:0 a.m.34 views

CVE-2023-43192

The CVE-2023-43192 entry concerns SpringbootCMS 1.0, where a SQL injection vulnerability exists in a newly created background component. User-supplied parameters are not filtered, allowing special characters to alter SQL logic and potentially enable attackers to execute arbitrary SQL statements. ...

8.8CVSS9AI score0.00167EPSS
Exploits1References2Affected Software1
Vulnrichment
Vulnrichmentadded 2023/09/27 12:0 a.m.11 views

CVE-2023-43191

SpringbootCMS 1.0 foreground message can be embedded malicious code saved in the database. When users browse the comments, these malicious codes embedded in the HTML will be executed, and the user's browser will be controlled by the attacker, so as to achieve the special purpose of the attacker,...

6.8AI score0.00176EPSS
Exploits1References1
Positive Technologies
Positive Technologiesadded 2023/09/27 12:0 a.m.2 views

PT-2023-28727 · Jfinalcms +1 · Jfinalcms +1

Name of the Vulnerable Software and Affected Versions: SpringbootCMS version 1.0 JFinalCMS affected versions not specified Description: The issue allows malicious code to be embedded in the foreground message and saved in the database. When users browse comments, the embedded malicious code in th...

5.4CVSS5.4AI score0.00176EPSS
Exploits1References4
CNNVD
CNNVDadded 2023/09/27 12:0 a.m.1 views

SpringBootCMS SQL Injection Vulnerability

SpringBootCMS is a content management system by heyewei individual developer. SpringbootCMS version 1.0 is vulnerable to a SQL injection vulnerability that stems from the presence of a SQL injection vulnerability...

8.8CVSS7.9AI score0.00167EPSS
Exploits1References3
NVD
NVDadded 2022/12/05 10:15 a.m.7 views

CVE-2022-4282

A vulnerability was found in SpringBootCMS and classified as critical. Affected by this issue is some unknown functionality of the component Template Management. The manipulation leads to injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used...

7.2CVSS0.00429EPSS
Exploits1References2
CVE
CVEadded 2022/12/05 12:0 a.m.49 views

CVE-2022-4282

CVE-2022-4282 affects SpringBootCMS, specifically the Template Management component. The issue is described as a remote injection vulnerability arising from manipulation of an unknown functionality, with exploitation possible over the network and high impact on confidentiality, integrity, and ava...

7.2CVSS6AI score0.00429EPSS
Exploits1References2Affected Software1
Cvelist
Cvelistadded 2022/12/05 12:0 a.m.15 views

CVE-2022-4282 SpringBootCMS Template Management injection

A vulnerability was found in SpringBootCMS and classified as critical. Affected by this issue is some unknown functionality of the component Template Management. The manipulation leads to injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used...

4.7CVSS7.5AI score0.00429EPSS
Exploits1References2
Vulnrichment
Vulnrichmentadded 2022/12/05 12:0 a.m.5 views

CVE-2022-4282 SpringBootCMS Template Management injection

A vulnerability was found in SpringBootCMS and classified as critical. Affected by this issue is some unknown functionality of the component Template Management. The manipulation leads to injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used...

4.7CVSS6.1AI score0.00429EPSS
Exploits1References2
Positive Technologies
Positive Technologiesadded 2022/12/05 12:0 a.m.2 views

PT-2022-26607 · Unknown · Springbootcms

Name of the Vulnerable Software and Affected Versions: SpringBootCMS affected versions not specified Description: A critical issue was found in the Template Management component of SpringBootCMS, allowing for injection attacks that can be launched remotely. The exploit has been disclosed to the...

7.2CVSS7AI score0.00429EPSS
Exploits1References5
Rows per page
Query Builder