Lucene search
K

8 matches found

NVD
NVD
added 2024/09/09 8:15 p.m.27 views

CVE-2024-44724

AutoCMS v5.4 was discovered to contain a PHP code injection vulnerability via the txtsiteurl parameter at /admin/siteadd.php. This vulnerability allows attackers to execute arbitrary PHP code via injecting a crafted value...

7.2CVSS0.00568EPSS
Exploits1References1
NVD
NVD
added 2024/09/09 8:15 p.m.22 views

CVE-2024-44725

AutoCMS v5.4 was discovered to contain a SQL injection vulnerability via the sidebar parameter at /admin/robot.php...

7.2CVSS0.00471EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2024/09/09 12:0 a.m.14 views

CVE-2024-44724

AutoCMS v5.4 was discovered to contain a PHP code injection vulnerability via the txtsiteurl parameter at /admin/siteadd.php. This vulnerability allows attackers to execute arbitrary PHP code via injecting a crafted value...

8.4AI score0.00568EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2024/09/09 12:0 a.m.11 views

CVE-2024-44725

AutoCMS v5.4 was discovered to contain a SQL injection vulnerability via the sidebar parameter at /admin/robot.php...

8.3AI score0.00471EPSS
Exploits1References1
CVE
CVE
added 2024/09/09 12:0 a.m.69 views

CVE-2024-44724

AutoCMS v5.4 is affected by a PHP code injection vulnerability exposed via the txtsite_url parameter in /admin/site_add.php. Exploitation allows executing arbitrary PHP code, as described across multiple sources (e.g., Red Hat and CNNVD entries). The issue is tied to an input parameter in the API...

7.2CVSS8.1AI score0.00568EPSS
Exploits1References1Affected Software1
CVE
CVE
added 2024/09/09 12:0 a.m.49 views

CVE-2024-44725

AutoCMS v5.4 is affected by a SQL injection in the sidebar parameter of /admin/robot.php. This CVE (CVE-2024-44725) is documented with a high impact (C/H I/H A/H) and CVSS v3.1 score of 7.2. Root cause: lack of input validation in the sidebar parameter leading to SQL statement manipulation. Explo...

7.2CVSS7.9AI score0.00471EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2024/09/09 12:0 a.m.37 views

CVE-2024-44724

AutoCMS v5.4 was discovered to contain a PHP code injection vulnerability via the txtsiteurl parameter at /admin/siteadd.php. This vulnerability allows attackers to execute arbitrary PHP code via injecting a crafted value...

0.00568EPSS
Exploits1References1
Cvelist
Cvelist
added 2024/09/09 12:0 a.m.16 views

CVE-2024-44725

AutoCMS v5.4 was discovered to contain a SQL injection vulnerability via the sidebar parameter at /admin/robot.php...

0.00471EPSS
Exploits1References1
Rows per page
Query Builder