EUVD-2022-50662

Malicious code in bioql PyPI...

EUVD-2022-48940

Malicious code in bioql PyPI...

EUVD-2022-50828

Malicious code in bioql PyPI...

CVE-2022-46101

AyaCMS v3.1.2 was found to have a code flaw in the ustsql.inc.php file, which allows attackers to cause command execution by inserting malicious code...

PT-2022-27738 · Ayacms · Ayacms

Name of the Vulnerable Software and Affected Versions: AyaCMS version 3.1.2 Description: The issue is related to a code flaw in the ust sql.inc.php file, which allows attackers to cause command execution by inserting malicious code. Recommendations: For AyaCMS version 3.1.2, consider restricting...

CVE-2022-47926

AyaCMS 3.1.2 is vulnerable to file deletion via /aya/module/admin/fstdel.inc.php...

CVE-2022-47926

AyaCMS 3.1.2 is vulnerable to file deletion via /aya/module/admin/fstdel.inc.php...

Remote code execution

AyaCMS 3.1.2 is vulnerable to Remote Code Execution RCE...

PT-2022-26739 · Ayacms · Ayacms

Name of the Vulnerable Software and Affected Versions: AyaCMS version 3.1.2 Description: The issue allows attackers to execute arbitrary code via a crafted PHP file, exploiting an arbitrary file upload vulnerability in the /admin/fst upload.inc.php component. Recommendations: For AyaCMS version...

CVE-2021-44238

AyaCMS 3.1.2 is vulnerable to Remote Code Execution RCE via /aya/module/admin/usttabe.inc.php,...

CVE-2020-23686

Cross site request forgery CSRF vulnerability in AyaCMS 3.1.2 allows attackers to change an administrators password or other unspecified impacts...