PT-2026-33208

Name of the Vulnerable Software and Affected Versions MediaWiki versions prior to 1.43.7 MediaWiki versions prior to 1.44.4 MediaWiki versions prior to 1.45.2 Description An issue exists in the program files includes/Page/Article.Php of the Wikimedia Foundation MediaWiki software. Recommendations...

CVE-2025-40644

Reflected Cross-Site Scripting XSS vulnerability in Riftzilla's QRGen. This vulnerability allows an attavker to execute JavaScript code in the victim's browser by sending them a malicious URL using the 'id' parameter in '/article.php'. This vulnerability can be exploited to steal sensitive user...

CVE-2025-40644

CVE-2025-40644 is a Reflected Cross-Site Scripting (XSS) vulnerability in Riftzilla’s QRGen. An attacker can inject JavaScript via the id parameter in /article.php to run code in a victim’s browser, potentially stealing session cookies or performing actions on behalf of the user. The issue is doc...

CVE-2025-40644 Reflected Cross-Site Scripting (XSS) in QRGen's Riftzilla

Reflected Cross-Site Scripting XSS vulnerability in Riftzilla's QRGen. This vulnerability allows an attavker to execute JavaScript code in the victim's browser by sending them a malicious URL using the 'id' parameter in '/article.php'. This vulnerability can be exploited to steal sensitive user...

DouCo DouPHP 安全漏洞

DouCo DouPHP is a lightweight enterprise content management system CMS from China DouCo. A security vulnerability exists in DouCo DouPHP v.1.8, which originates from an arbitrary code execution vulnerability in the description parameter of the /admin/article.php page...

PT-2024-23729 · Ecshop · Ecshop

Name of the Vulnerable Software and Affected Versions: ECshop versions 4.x Description: The issue allows an attacker to obtain sensitive information via the file/article.php component. This is achieved through a SQL Injection vulnerability, which enables the attacker to manipulate database querie...

Stupid Simple CMS Security Vulnerability

Stupid Simple CMS is a content management system by codelyfe individual developer. A security vulnerability exists in Stupid Simple CMS v1.2.4, which stems from a cross-site request forgery CSRF vulnerability via /update-article.php...

CVE-2020-20796

FlameCMS 3.3.5 contains a SQL injection vulnerability in /master/article.php via the "Id" parameter...

Chadha Software Technologies PHPKB Standard Multi-Language article.php Cross-Site Scripting Vulnerability

Chadha Software Technologies PHPKB Standard Multi-Language is a web-based, multi-language knowledge base management system from Chadha Software Technologies, India. A cross-site scripting vulnerability exists in the way the Referer header is handled in the article.php file in Chadha Software...

TUTUCMS system admin\Article.php page order parameter has SQL injection vulnerability

TUTUCMS is a set of CMS management program focusing on the development of image-based websites, using PHP+MYSQL architecture, which can run on different platforms Windows, Linux, Unix. A SQL injection vulnerability exists in the order parameter of the admin\Article.php page of the TUTUCMS system...

CVE-2017-11415

Fiyo CMS 2.0.7 has SQL injection in dapur/apps/apparticle/sysarticle.php via $POST'parentid', $POST'desc', $POST'keys', and $POST'level'...

CommonSense CMS - SQL Injection

Exploit Title: CommonSense CMS Sql Injection Vulnerability Author: Pokeng Software Link: http://www.sensesites.com/ Platform / Tested on: Win/Linux category: webapps/0day Code : http://site/article.php?articleid=SQL Dork : "Powered by CommonSense CMS" Greetz Explore Crew : ArRay yuda N4ck0 K4pt3N...

DB[CMS] - 'article.php' SQL Injection

DBCMS article.php SQL Injection Vulnerability ------------------------------------------------------------------------------------------- Author: blackraptor Mail: [email protected] Script Home: http://www.debliteck.com/how.php Dork: "Designed and Developed by Debliteck Ltd"...

PT-2006-5327 · Yet Another Community System · Yacs Cms

Name of the Vulnerable Software and Affected Versions: Yet Another Community System YACS CMS versions 6.6.1 and earlier Description: A remote file inclusion issue allows attackers to execute arbitrary PHP code via a URL in the contextpath to root parameter. This affects the articles/article.php...