34 matches found
CVE-2019-11568
An issue was discovered in AikCms v2.0. There is a File upload vulnerability, as demonstrated by an admin/page/system/nav.php request with PHP code in a .php file with the application/octet-stream content type...
EUVD-2020-10386
Malware in sbrugna...
EUVD-2020-10388
Malware in sbrugna...
EUVD-2019-3238
Malware in sbrugna...
EUVD-2019-3239
Malware in sbrugna...
CVE-2020-18462
File Upload vulnerabilty in AikCms v2.0.0 in posteredit.php because the background file management office does not verify the uploaded file...
CVE-2020-18464
Cross Site Request Forgery CSRF vulnerability in AikCms 2.0.0 in videolist.php, which can let a malicious user delete movie information...
CVE-2019-11567
An issue was discovered in AikCms v2.0. There is a SQL Injection vulnerability via $GET'del', as demonstrated by an admin/page/system/nav.php?del= URI...
The vulnerability of the video_list.php file in the AikCms content management system allows a hacker to delete certain information.
The vulnerability of the videolist.php file in the AikCms content management system is related to the manipulation of cross-site requests. Exploiting this vulnerability could allow a malicious actor to remotely delete certain information...
CVE-2020-18462
File Upload vulnerabilty in AikCms v2.0.0 in posteredit.php because the background file management office does not verify the uploaded file...
CVE-2020-18462
File Upload vulnerabilty in AikCms v2.0.0 in posteredit.php because the background file management office does not verify the uploaded file...
CVE-2020-18464
Cross Site Request Forgery CSRF vulnerability in AikCms 2.0.0 in videolist.php, which can let a malicious user delete movie information...
CVE-2020-18464
Cross Site Request Forgery CSRF vulnerability in AikCms 2.0.0 in videolist.php, which can let a malicious user delete movie information...
Cross site request forgery (csrf)
Cross Site Request Forgery CSRF vulnerability in AikCms 2.0.0 in videolist.php, which can let a malicious user delete movie information...
Unrestricted file upload
File Upload vulnerabilty in AikCms v2.0.0 in posteredit.php because the background file management office does not verify the uploaded file...
CVE-2020-18464
CVE-2020-18464 describes a Cross-Site Request Forgery (CSRF) in AikCms 2.0.0, specifically in video_list.php, which can allow a malicious user to delete movie information. Related sources in the connected documents consistently reference CSRF as the underlying issue and the impact is limited to u...
CVE-2020-18464
Cross Site Request Forgery CSRF vulnerability in AikCms 2.0.0 in videolist.php, which can let a malicious user delete movie information...
CVE-2020-18462
File Upload vulnerabilty in AikCms v2.0.0 in posteredit.php because the background file management office does not verify the uploaded file...
CVE-2020-18462
Summary (CVE-2020-18462): AikCms version 2.0.0 has a file upload vulnerability in poster_edit.php caused by the background file management not validating uploaded files. Multiple connected sources confirm the issue, including Red Hat and NVD records. The NVD entry lists a correlated CVSS score (2...
AikCms 跨站请求伪造漏洞
AikCms AikCms is a content management system CMS based on PHP and MySQL. A security vulnerability exists in AikCms version v2.0.0, which can be exploited by attackers to delete video messages...