CVE-2025-13275

A security vulnerability has been detected in Iqbolshoh php-business-website up to 10677743a8dfc281f85291a27cf63a0bce043c24. This affects an unknown part of the file /admin/about.php. The manipulation leads to unrestricted upload. It is possible to initiate the attack remotely. The exploit has be...

PT-2025-47137

Name of the Vulnerable Software and Affected Versions Iqbolshoh php-business-website affected versions not specified Description A security issue exists that allows for unrestricted file upload. The issue affects an unknown part of the /admin/about.php file and can be initiated remotely. The...

CVE-2021-44866

An issue was discovered in Online-Movie-Ticket-Booking-System 1.0. The file about.php does not perform input validation on the 'id' paramter. An attacker can append SQL queries to the input to extract sensitive information from the database...

Online-Movie-Ticket-Booking-System-In-Php SQL注入漏洞

Online-Movie-Ticket-Booking-System-In-Php is an online movie booking system. Online-Movie-Ticket-Booking-System-In-Php suffers from a SQL injection vulnerability that stems from the about.php file not performing input validation on the id parameter. An attacker can append a SQL query to the input...

CVE-2018-18497

Limitations on the URIs allowed to WebExtensions by the browser.windows.create API can be bypassed when a pipe in the URL field is used within the extension to load multiple pages as a single argument. This could allow a malicious WebExtension to open privileged about: or file: locations. This...

ZZCMS V8.0 SQL Injection Vulnerability in admin/about.php File

ZZCMS is an enterprise website builder. A SQL injection vulnerability exists in the ZZCMS V8.0 admin/about.php file. The lack of filtering of the 'id' parameter obtained from $post'id' allows an attacker to exploit the vulnerability to obtain sensitive database information...