143 matches found
CVE-2025-40644
Reflected Cross-Site Scripting XSS vulnerability in Riftzilla's QRGen. This vulnerability allows an attavker to execute JavaScript code in the victim's browser by sending them a malicious URL using the 'id' parameter in '/article.php'. This vulnerability can be exploited to steal sensitive user...
EUVD-2008-2091
Malware in sbrugna...
EUVD-2020-2854
Malware in sbrugna...
EUVD-2010-2071
Malware in sbrugna...
EUVD-2002-2157
Malware in sbrugna...
EUVD-2020-13576
Malware in sbrugna...
EUVD-2025-14663
Malicious code in bioql PyPI...
CVE-2025-5886
A vulnerability was found in Emlog up to 2.5.7 and classified as problematic. This issue affects some unknown processing of the file /admin/article.php. The manipulation of the argument activepost leads to cross site scripting. The attack may be initiated remotely. The exploit has been disclosed ...
CVE-2025-5886 Emlog article.php cross site scripting
A vulnerability was found in Emlog up to 2.5.7 and classified as problematic. This issue affects some unknown processing of the file /admin/article.php. The manipulation of the argument activepost leads to cross site scripting. The attack may be initiated remotely. The exploit has been disclosed ...
CVE-2025-5155 qianfox FoxCMS Article.php batchCope sql injection
A vulnerability has been found in qianfox FoxCMS 1.2.5 and classified as critical. Affected by this vulnerability is the function batchCope of the file app/admin/controller/Article.php. The manipulation of the argument ids leads to sql injection. The attack can be launched remotely. The exploit h...
CVE-2025-5155 qianfox FoxCMS Article.php batchCope sql injection
A vulnerability has been found in qianfox FoxCMS 1.2.5 and classified as critical. Affected by this vulnerability is the function batchCope of the file app/admin/controller/Article.php. The manipulation of the argument ids leads to sql injection. The attack can be launched remotely. The exploit h...
CVE-2025-5155
CVE-2025-5155 affects qianfox FoxCMS 1.2.5; the bug is in the batchCope function of app/admin/controller/Article.php, where manipulation of the ids argument enables SQL injection. The issue can be exploited remotely and exploitation has been publicly disclosed. Several sources confirm the vulnera...
CVE-2024-27689
Stupid Simple CMS v1.2.4 was discovered to contain a Cross-Site Request Forgery CSRF via /update-article.php...
CVE-2007-1965
Multiple cross-site scripting XSS vulnerabilities in eXV2 CMS 2.0.4.3 and earlier allow remote attackers to inject arbitrary web script or HTML via the setlang parameter to 1 archive.php, 2 article.php, 3 index.php, or 4 topics.php...
CVE-2025-40628
SQL injection vulnerability in DomainsPRO 1.2. This vulnerability could allow an attacker to retrieve, create, update and delete databases via the “d” parameter in the “/article.php” endpoint...
CVE-2025-40628 SQL Injection in DomainsPRO
SQL injection vulnerability in DomainsPRO 1.2. This vulnerability could allow an attacker to retrieve, create, update and delete databases via the “d” parameter in the “/article.php” endpoint...
DomainsPRO SQL注入漏洞
DomainsPRO is an ultimate artificial intelligence domain name generation solution for individual developers at Riftzilla. A SQL injection vulnerability exists in DomainsPRO version 1.2, which stems from an improper manipulation of the parameter d in the file /article.php resulting in SQL injectio...
CVE-2024-13132 Emlog Pro Subpage article.php cross site scripting
A vulnerability classified as problematic was found in Emlog Pro up to 2.4.3. This vulnerability affects unknown code of the file /admin/article.php of the component Subpage Handler. The manipulation leads to cross site scripting. The attack can be initiated remotely. The exploit has been disclos...
CVE-2024-44839
RapidCMS v1.3.1 was discovered to contain a SQL injection vulnerability via the articleid parameter at /default/article.php...
CVE-2024-44839
RapidCMS v1.3.1 was discovered to contain a SQL injection vulnerability via the articleid parameter at /default/article.php...