7 matches found
CVE-2022-25485
CuppaCMS v1.0 was discovered to contain a local file inclusion via the url parameter in /alerts/alertLightbox.php...
CuppaCMS SQL Injection Vulnerability (CNVD-2022-63581)
CuppaCMS is a content management system CMS.A SQL injection vulnerability exists in CuppaCMS v1.0, which originates from the lack of validation of external input SQL statements in /administrator/alerts/alertLightbox.php. An attacker could use this vulnerability to execute illegal SQL commands to...
Sql injection
CuppaCMS v1.0 was discovered to contain a SQL injection vulnerability via /administrator/alerts/alertLightbox.php...
CVE-2022-27985
CuppaCMS v1.0 contains a SQL injection vulnerability in /administrator/alerts/alertLightbox.php (CVE-2022-27985). Root cause per CNVD: lack of validation of external input SQL statements. Impact described in connected documents: unauthorized access, data leakage, and potential compromise of the C...
CuppaCMS alertLightbox.php file contains vulnerabilities
CuppaCMS is a content management system CMS, and a file inclusion vulnerability exists in CuppaCMS version 1.0. The vulnerability stems from the fact that the url parameter in /alerts/alertLightbox.php does not effectively filter calls to local file resources, which could be exploited to read loc...
CVE-2022-25485
CuppaCMS v1.0 was discovered to contain a local file inclusion via the url parameter in /alerts/alertLightbox.php...
CVE-2022-25485
CuppaCMS v1.0 was discovered to contain a local file inclusion via the url parameter in /alerts/alertLightbox.php...