CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

SQL Injection vulnerability in ABO.CMS version 5.8, allows remote attackers to execute arbitrary code, cause a denial of service DoS, escalate privileges, and obtain sensitive information via the tblogin parameter in admin login page...

9.8CVSS8.9AI score0.00619EPSS

Exploits3References1

RedhatCVE•added 2025/05/23 4:52 a.m.•5 views

CVE-2023-46953

SQL Injection vulnerability in ABO.CMS v.5.9.3, allows remote attackers to execute arbitrary code via the d parameter in the Documents module...

9.8CVSS9AI score0.00804EPSS

Exploits0

RedhatCVE•added 2025/05/23 4:41 a.m.•5 views

CVE-2023-48858

A Cross-site scripting XSS vulnerability in login page php code in Armex ABO.CMS 5.9 allows remote attackers to inject arbitrary web script or HTML via the login.php? URL part...

6.1CVSS6AI score0.00231EPSS

Exploits2

RedhatCVE•added 2025/03/15 4:40 a.m.•12 views

CVE-2021-37787

The unprivileged administrative interface in ABO.CMS version 5.8 through v.5.9.3 is affected by a SQL Injection vulnerability via a HTTP POST request to the TinyMCE module...

6.5CVSS7.9AI score0.00073EPSS

Exploits0

NVD•added 2025/03/11 6:15 p.m.•8 views

CVE-2021-37787

The unprivileged administrative interface in ABO.CMS version 5.8 through v.5.9.3 is affected by a SQL Injection vulnerability via a HTTP POST request to the TinyMCE module...

6.5CVSS0.00073EPSS

Exploits0References1

CNNVD•added 2025/03/11 12:0 a.m.•3 views

ABO.CMS 安全漏洞

ABO.CMS is a content management platform from ABO.CMS, Inc. A security vulnerability exists in ABO.CMS versions 5.8 through 5.9.3, which originates from a SQL injection attack sent to the TinyMCE module via an HTTP POST request...

6.5CVSS7.8AI score0.00073EPSS

Exploits0References2

Vulnrichment•added 2025/03/11 12:0 a.m.•7 views

CVE-2021-37787

The unprivileged administrative interface in ABO.CMS version 5.8 through v.5.9.3 is affected by a SQL Injection vulnerability via a HTTP POST request to the TinyMCE module...

8.3AI score0.00073EPSS

Exploits0References1

Cvelist•added 2025/03/11 12:0 a.m.•10 views

CVE-2021-37787

The unprivileged administrative interface in ABO.CMS version 5.8 through v.5.9.3 is affected by a SQL Injection vulnerability via a HTTP POST request to the TinyMCE module...

0.00073EPSS

Exploits0References1

CVE•added 2025/03/11 12:0 a.m.•52 views

CVE-2021-37787

CVE-2021-37787 affects ABO.CMS versions 5.8–5.9.3, due to a SQL Injection vulnerability exploitable via an HTTP POST to the TinyMCE module. The connected documents confirm the affected component (ABO.CMS, TinyMCE integration) and the vulnerability class (SQL injection) but do not provide details ...

6.5CVSS8AI score0.00073EPSS

Exploits0References1Affected Software1

NVD•added 2024/03/15 6:15 a.m.•9 views

CVE-2024-25227

9.8CVSS8.4AI score0.00619EPSS

Exploits3References1

Cvelist•added 2024/03/15 12:0 a.m.•16 views

CVE-2024-25227

8.7AI score0.00619EPSS

Exploits3References1

CNNVD•added 2024/03/15 12:0 a.m.•4 views

ABO.CMS Security Vulnerabilities

ABO.CMS is a content management platform. A security vulnerability exists in ABO.CMS version 5.8, which stems from the presence of a SQL injection vulnerability that allows remote attackers to execute arbitrary code, cause a denial of service DoS, elevate privileges, and gain access to sensitive...

9.8CVSS8.3AI score0.00619EPSS

Exploits3References2

CVE•added 2024/03/15 12:0 a.m.•87 views

CVE-2024-25227

CVE-2024-25227 concerns an SQL injection in ABO.CMS 5.8, specifically in the admin login page where the vulnerable parameter is tb_login . The available connected documents explicitly describe that remote attackers can trigger the injection to perform arbitrary code execution, cause DoS, escalate...

9.8CVSS8.8AI score0.00619EPSS

Exploits3References1Affected Software1

NVD•added 2024/01/17 8:15 p.m.•9 views

CVE-2023-48858

A Cross-site scripting XSS vulnerability in login page php code in Armex ABO.CMS 5.9 allows remote attackers to inject arbitrary web script or HTML via the login.php? URL part...

6.1CVSS6.2AI score0.00231EPSS

Exploits2References2

Prion•added 2024/01/17 8:15 p.m.•12 views

Cross site scripting

A Cross-site scripting XSS vulnerability in login page php code in Armex ABO.CMS 5.9 allows remote attackers to inject arbitrary web script or HTML via the login.php? URL part...

5.8CVSS6.2AI score0.00231EPSS

Exploits2References2Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by