emlog 跨站请求伪造漏洞

Emlog is an open-source CMS website building system based on PHP and MySQL. Versions of Emlog 2.6.6 and earlier have a cross-site request forgeing vulnerability. This vulnerability stems from the lack of token checks in the deleteasync operation, which may lead to cross-site request forgeing...

CVE-2021-42644

cmseasy V7.7.520211012 is affected by an arbitrary file read vulnerability. After login, the configuration file information of the website such as the database configuration file config / configdatabase can be read through this vulnerability...

SQL Injection Vulnerability in Website Building System of Shenzhen Sanliwu Technology Co.

Shenzhen Three Six Five Technology Co., Ltd. is an Internet application technology and professional network communication service provider. Shenzhen Three Six Five Technology Co., Ltd. website construction system has a SQL injection vulnerability, allowing attackers to exploit the vulnerability t...

CVE-2017-12774

finecms in 1.9.5\controllers\member\ContentController.php allows remote attackers to operate website database...

CVE-2017-12774

finecms in 1.9.5\controllers\member\ContentController.php allows remote attackers to operate website database...

SQL Injection Vulnerability in UFIDA Software NC-IUFO System

UFIDA NC-IUFO system is a financial management software. The UFIDA NC-IUFO system suffers from a SQL injection vulnerability that can be exploited by an attacker to gain access to website database information...

Joomla SQL Injection Vulnerability (CNVD-2015-06804)

Joomla is a content management system, developed with PHP + MySQL database, running on Linux, Windows, MacOSX, Solaris and many other platforms. Joomla has been disclosed to have a SQL injection vulnerability, the comprehensive use of the vulnerability, attackers can obtain the website database...