CVE-2025-51511

Cadmium CMS v.0.4.9 has a background arbitrary file upload vulnerability in /admin/content/filemanager/uploads...

EUVD-2022-39373

Malicious code in bioql PyPI...

CVE-2022-36671

Novel-Plus v3.6.2 was discovered to contain an arbitrary file download vulnerability via the background file download API...

CVE-2022-40886

DedeCMS 5.7.98 has a file upload vulnerability in the background...

Desdev DedeCMS 代码问题漏洞

Desdev DedeCMS Dream Weaving Content Management System is a PHP-based open-source content management system CMS of China Zhuozhuo network Desdev company. The system has content publishing, content management, content editing and content retrieval functions. DedeCMS 5.7.98 version of the code...

CVE-2022-36671

Novel-Plus v3.6.2 was discovered to contain an arbitrary file download vulnerability via the background file download API...

CVE-2022-36671

Novel-Plus v3.6.2 was discovered to contain an arbitrary file download vulnerability via the background file download API...

Arbitrary file deletion

Novel-Plus v3.6.2 was discovered to contain an arbitrary file download vulnerability via the background file download API...

CVE-2022-24553

An issue was found in Zfaka = 1.4.5. The verification of the background file upload function check is not strict, resulting in remote command execution...

Design/Logic Flaw

An issue was found in Zfaka = 1.4.5. The verification of the background file upload function check is not strict, resulting in remote command execution...

CVE-2020-18462

File Upload vulnerabilty in AikCms v2.0.0 in posteredit.php because the background file management office does not verify the uploaded file...

Unrestricted file upload

File Upload vulnerabilty in AikCms v2.0.0 in posteredit.php because the background file management office does not verify the uploaded file...

CVE-2020-18462

File Upload vulnerabilty in AikCms v2.0.0 in posteredit.php because the background file management office does not verify the uploaded file...

Chemex has a background file upload vulnerability

Coffee Pot Chemex is a free, open source, efficient and beautiful IT operations management platform. Chemex suffers from a background file upload vulnerability that can be exploited by an attacker to gain control of the server...

File upload vulnerability in background mo***_co***.php file of PHPOK enterprise website building system

PHPOK is a set of enterprise station CMS system developed in PHP + MYSQL language. A file upload vulnerability exists in the background moco.php file of PHPOK enterprise website system. Remote attackers can use this vulnerability to obtain server administrative privileges...

Arbitrary File Deletion Vulnerability in Background File List of WMCMS System

WMCMS is based on PHP + MYSQL as the core development, free + open source professional Chinese labeling system. WMCMS system background file list exists arbitrary file deletion vulnerability. Attackers can use the vulnerability to delete arbitrary files, resulting in system reinstallation...

Zzzphp V1.5.9 SQL Injection Vulnerability in Background sa***.php File

zzphp is a free website building system developed using PHP. Zzzphp V1.5.9 SQL injection vulnerability exists in the background sa.php file, which can be exploited by attackers to obtain sensitive information from the database...

Arbitrary File Deletion Vulnerability in Background File Management of HDWiki System

Interactive Wiki open source system HDwiki is a free wiki Wiki building system. There is an arbitrary file deletion vulnerability in the background file management of the HDWiki system. An attacker can exploit the vulnerability to delete arbitrary files...

Code execution vulnerability in cms made simple backend file copying

CMS Made Simple is an open source content management system. It is built using PHP and Smarty Engine , which separates content , functionality and templates . A code execution vulnerability exists in cms made simple version 2.2.7 when performing file copying in the background, which can be...

ECSHOP cross-site+background file contains=Getshell-a vulnerability warning-the black bar safety net

Brief description: See focus on the application there Ecshop came.. Detailed description: 0x1 the member Center to add the out of stock registry linkman parameters in the background to view in detail when not to do the encoding,leading to cross-site.. 0x2 ecshop background integrate. php file fro...