PT-2025-20665 · Unknown · Lylme Spage

Name of the Vulnerable Software and Affected Versions: LyLme Spage version 2.1 Description: A critical issue was found in LyLme Spage, affecting an unknown part of the file lylme spage/blob/master/admin/ajax link.php. The manipulation of the sort argument leads to SQL injection. It is possible to...

PT-2023-29771 · Unknown · Lylme Spage

Name of the Vulnerable Software and Affected Versions: lylme spage version 1.7.0 Description: An arbitrary file upload vulnerability in the component ajax link.php of lylme spage allows attackers to execute arbitrary code via uploading a crafted file. Recommendations: For lylme spage version 1.7....