3 matches found
CVE-2024-44724
AutoCMS v5.4 was discovered to contain a PHP code injection vulnerability via the txtsiteurl parameter at /admin/siteadd.php. This vulnerability allows attackers to execute arbitrary PHP code via injecting a crafted value...
PT-2024-31222 · Autocms · Autocms
Name of the Vulnerable Software and Affected Versions: AutoCMS version 5.4 Description: The issue allows attackers to execute arbitrary PHP code via injecting a crafted value into the txtsite url parameter at the "/admin/site add.php" API endpoint. This enables attackers to inject malicious PHP...
AutoCMS 安全漏洞
AutoCMS is a Content Management System CMS from AutoCMS Open Source. It helps dealerships manage their website content, online advertising, social media and analytics. A security vulnerability exists in AutoCMS version 5.4, which stems from a PHP code injection vulnerability in the txtsiteurl...