244 matches found
GetSimple CMS 3.3.13 - Open Redirect
GetSimple CMS 3.3.13 contains an open redirect vulnerability via the admin/index.php redirect parameter. An attacker can redirect a user to a malicious site and possibly obtain sensitive information, modify data, and/or execute unauthorized operations. id: CVE-2019-9915 info: name: GetSimple CMS...
EUVD-2006-2888
Malware in sbrugna...
EUVD-2009-4527
Malware in sbrugna...
EUVD-2012-3896
Malware in sbrugna...
EUVD-2019-5232
Malware in sbrugna...
EUVD-2012-1061
Malware in sbrugna...
EUVD-2006-5545
Malware in sbrugna...
EUVD-2008-6242
Malware in sbrugna...
CVE-2025-10482
A vulnerability was detected in SourceCodester Online Student File Management System 1.0. Affected is an unknown function of the file /admin/index.php. The manipulation of the argument Username results in sql injection. The attack can be executed remotely. The exploit is now public and may be use...
CVE-2025-8378 Campcodes Online Hotel Reservation System Login index.php sql injection
A vulnerability was found in Campcodes Online Hotel Reservation System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /admin/index.php of the component Login. The manipulation of the argument username/password leads to sql injection. The attac...
PHPGurukul Vehicle Parking Management System 注入漏洞
Vehicle Parking Management System is a parking management system. Vehicle Parking Management System suffers from a SQL injection vulnerability that stems from an error in the parameter Username in file /admin/index.php that lacks validation of an externally entered SQL statement. An attacker can...
PHPGurukul Zoo Management System 安全漏洞
Zoo Management System is a zoo management system. Zoo Management System suffers from a SQL injection vulnerability that originates from the lack of validation of an externally entered SQL statement in the parameter Username in file /admin/index.php. An attacker can exploit this vulnerability to...
CVE-2020-18157
Cross Site Request Forgery CSRF vulnerability in MetInfo 6.1.3 via a doaddsave action in admin/index.php...
CVE-2012-0996
Multiple directory traversal vulnerabilities in 11in1 1.2.1 stable 12-31-2011 allow remote attackers to read arbitrary files via a .. dot dot in the class parameter to 1 index.php or 2 admin/index.php...
PT-2024-17861 · Unknown · Phpgurukul Small Crm
Name of the Vulnerable Software and Affected Versions: PHPGurukul Small CRM version 1.0 Description: A critical issue has been found in the software, affecting an unknown function of the file /admin/index.php. The manipulation of the email argument leads to SQL injection. It is possible to launch...
PT-2024-31290 · Mozilocms · Mozilocms
Name of the Vulnerable Software and Affected Versions: moziloCMS version 3.0 Description: An arbitrary file upload issue in the /admin/index.php component allows attackers to execute arbitrary code by uploading a crafted file. Recommendations: For moziloCMS version 3.0, consider restricting acces...
CVE-2024-7497 itsourcecode Airline Reservation System index.php file inclusion
A vulnerability was found in itsourcecode Airline Reservation System 1.0 and classified as critical. This issue affects some unknown processing of the file /admin/index.php. The manipulation of the argument page leads to file inclusion. The attack may be initiated remotely. The exploit has been...
Sql injection
SQL injection vulnerability in wuzhicms v.4.1.0 allows a remote attacker to execute arbitrary code via the Database Backup Functionality in the coreframe/app/database/admin/index.php component...
CVE-2023-46482
SQL injection vulnerability in wuzhicms v.4.1.0 allows a remote attacker to execute arbitrary code via the Database Backup Functionality in the coreframe/app/database/admin/index.php component...
CVE-2020-21489
File Upload vulnerability in Feehicms v.2.0.8 allows a remote attacker to execute arbitrary code via the /admin/index.php?r=admin-user%2Fupdate-self component...