11 matches found
CVE-2022-46135
In AeroCms v0.0.1, there is an arbitrary file upload vulnerability at /admin/posts.php?source=editpost , through which we can upload webshell and control the web server...
CVE-2022-46051
The approve parameter from the AeroCMS-v0.0.1 CMS system is vulnerable to SQL injection attacks...
CVE-2022-46051
The approve parameter from the AeroCMS-v0.0.1 CMS system is vulnerable to SQL injection attacks...
Sql injection
The approve parameter from the AeroCMS-v0.0.1 CMS system is vulnerable to SQL injection attacks...
CVE-2022-46047
AeroCMS v0.0.1 is vulnerable to SQL Injection via the delete parameter...
CVE-2022-46061
AeroCMS v0.0.1 is vulnerable to ClickJacking...
CVE-2022-46047
AeroCMS v0.0.1 is vulnerable to SQL Injection via the delete parameter...
CVE-2022-45329
AeroCMS v0.0.1 was discovered to contain a SQL Injection vulnerability via the Search parameter. This vulnerability allows attackers to access database information...
CVE-2022-45535
AeroCMS v0.0.1 was discovered to contain a SQL Injection vulnerability via the edit parameter at \admin\categories.php. This vulnerability allows attackers to access database information...
CVE-2022-45536
AeroCMS v0.0.1 was discovered to contain a SQL Injection vulnerability via the id parameter at \admin\postcomments.php. This vulnerability allows attackers to access database information...
Sql injection
AeroCMS v0.0.1 was discovered to contain a SQL Injection vulnerability via the edit parameter at \admin\categories.php. This vulnerability allows attackers to access database information...