Lucene search
K

34 matches found

CNNVD
CNNVD
added 2021/08/12 12:0 a.m.5 views

AikCms 代码问题漏洞

AikCms AikCms is a content management system CMS based on PHP and MySQL. A security vulnerability exists in AikCms version v2.0.0, which originates from uploaded files not validated in the background file management...

7.2CVSS7.1AI score0.00976EPSS
Exploits1References1
CNNVD
CNNVD
added 2021/08/12 12:0 a.m.5 views

AikCms跨站请求伪造漏洞

AikCms AikCms is a content management system CMS based on PHP and MySQL. AikCms has a security vulnerability that can be exploited by attackers to delete video messages...

3.5CVSS5.2AI score0.00291EPSS
Exploits1References1
CNVD
CNVD
added 2020/12/10 12:0 a.m.2 views

SQL Injection Vulnerability in AikCms Backend

AikCms is a lightweight CMS. An SQL injection vulnerability exists in the backend of AikCms. An attacker can exploit this vulnerability to obtain sensitive database information...

7.8AI score
Exploits0
CNVD
CNVD
added 2020/12/05 12:0 a.m.2 views

File upload vulnerability in AikCms backend vi***_ad***.php page

AikCms is a lightweight CMS. A file upload vulnerability exists in the AikCms backend viad.php page, which can be exploited by an attacker to upload a webshell and gain server privileges...

7.2AI score
Exploits0
NVD
NVD
added 2019/04/27 2:29 p.m.13 views

CVE-2019-11568

An issue was discovered in AikCms v2.0. There is a File upload vulnerability, as demonstrated by an admin/page/system/nav.php request with PHP code in a .php file with the application/octet-stream content type...

8.8CVSS8.8AI score0.0139EPSS
Exploits1References1
Prion
Prion
added 2019/04/27 2:29 p.m.12 views

Unrestricted file upload

An issue was discovered in AikCms v2.0. There is a File upload vulnerability, as demonstrated by an admin/page/system/nav.php request with PHP code in a .php file with the application/octet-stream content type...

6.8CVSS8.7AI score0.0139EPSS
Exploits1References1Affected Software1
OSV
OSV
added 2019/04/27 2:29 p.m.3 views

CVE-2019-11568

An issue was discovered in AikCms v2.0. There is a File upload vulnerability, as demonstrated by an admin/page/system/nav.php request with PHP code in a .php file with the application/octet-stream content type...

8.8CVSS7.4AI score0.0139EPSS
Exploits1References1
NVD
NVD
added 2019/04/27 2:29 p.m.20 views

CVE-2019-11567

An issue was discovered in AikCms v2.0. There is a SQL Injection vulnerability via $GET'del', as demonstrated by an admin/page/system/nav.php?del= URI...

7.2CVSS7.4AI score0.01276EPSS
Exploits1References1
Prion
Prion
added 2019/04/27 2:29 p.m.10 views

Sql injection

An issue was discovered in AikCms v2.0. There is a SQL Injection vulnerability via $GET'del', as demonstrated by an admin/page/system/nav.php?del= URI...

6.5CVSS7.3AI score0.01276EPSS
Exploits1References1Affected Software1
OSV
OSV
added 2019/04/27 2:29 p.m.3 views

CVE-2019-11567

An issue was discovered in AikCms v2.0. There is a SQL Injection vulnerability via $GET'del', as demonstrated by an admin/page/system/nav.php?del= URI...

7.2CVSS7.1AI score0.01276EPSS
Exploits1References1
Cvelist
Cvelist
added 2019/04/27 1:58 p.m.16 views

CVE-2019-11568

An issue was discovered in AikCms v2.0. There is a File upload vulnerability, as demonstrated by an admin/page/system/nav.php request with PHP code in a .php file with the application/octet-stream content type...

8.8AI score0.0139EPSS
Exploits1References1
CVE
CVE
added 2019/04/27 1:58 p.m.50 views

CVE-2019-11568

CVE-2019-11568 affects AikCms v2.0 . The vulnerability is a file upload issue demonstrated by an admin/navigation request (nav.php) where PHP code is uploaded as a .php file with content type application/octet-stream. The CVSS data indicates a high impact (C, I, A all HIGH) with network access an...

8.8CVSS8.7AI score0.0139EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2019/04/27 1:57 p.m.15 views

CVE-2019-11567

An issue was discovered in AikCms v2.0. There is a SQL Injection vulnerability via $GET'del', as demonstrated by an admin/page/system/nav.php?del= URI...

7.4AI score0.01276EPSS
Exploits1References1
CVE
CVE
added 2019/04/27 1:57 p.m.44 views

CVE-2019-11567

CVE-2019-11567 affects AikCms v2.0 . The vulnerability is a SQL Injection via the GET parameter del in admin/page/system/nav.php?del=. The condition arises from unsanitized or improperly handled user input in the query construction, enabling an attacker to influence the database query. Documents ...

7.2CVSS7.3AI score0.01276EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder