Lucene search
K

25 matches found

Cvelist
Cvelist
added 2024/09/09 12:0 a.m.37 views

CVE-2024-44724

AutoCMS v5.4 was discovered to contain a PHP code injection vulnerability via the txtsiteurl parameter at /admin/siteadd.php. This vulnerability allows attackers to execute arbitrary PHP code via injecting a crafted value...

0.00568EPSS
Exploits1References1
CNNVD
CNNVD
added 2024/09/09 12:0 a.m.4 views

AutoCMS 安全漏洞

AutoCMS is a content management system CMS from AutoCMS Open Source. It can help dealerships manage their website content, online advertising, social media and analytics. AutoCMS version 5.4 suffers from a SQL injection vulnerability that originates from the lack of validation of externally enter...

7.2CVSS8.2AI score0.00471EPSS
Exploits1References2
Cvelist
Cvelist
added 2024/09/09 12:0 a.m.16 views

CVE-2024-44725

AutoCMS v5.4 was discovered to contain a SQL injection vulnerability via the sidebar parameter at /admin/robot.php...

0.00471EPSS
Exploits1References1
CNNVD
CNNVD
added 2024/09/09 12:0 a.m.8 views

AutoCMS 安全漏洞

AutoCMS is a Content Management System CMS from AutoCMS Open Source. It helps dealerships manage their website content, online advertising, social media and analytics. A security vulnerability exists in AutoCMS version 5.4, which stems from a PHP code injection vulnerability in the txtsiteurl...

7.2CVSS7.9AI score0.00568EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2024/09/09 12:0 a.m.11 views

PT-2024-31222 · Autocms · Autocms

Name of the Vulnerable Software and Affected Versions: AutoCMS version 5.4 Description: The issue allows attackers to execute arbitrary PHP code via injecting a crafted value into the txtsite url parameter at the "/admin/site add.php" API endpoint. This enables attackers to inject malicious PHP...

7.2CVSS7.5AI score0.00568EPSS
Exploits1References7
Rows per page
Query Builder