9 matches found
CVE-2026-6489
A security flaw has been discovered in QueryMine sms up to 7ab5a9ea196209611134525ffc18de25c57d9593. This issue affects some unknown processing of the file admin/addteacher.php of the component Background Management Page. The manipulation of the argument image results in unrestricted upload. The...
CVE-2025-10218
CVE-2025-10218 affects lostvip-com ruoyi-go 2.1, specifically the SelectListPage function in modules/system/dao/SysRoleDao.go. The vulnerability arises from manipulation of the sortName argument, enabling SQL injection with remote exploitation reported as possible. Exploitation code has been publ...
ruoyi-go SQL注入漏洞
ruoyi-go is a backend management system for individual developers at lostvip.com. A SQL injection vulnerability exists in ruoyi-go version 2.1, which originates from an incorrect operation of the parameter sortName in the file modules/system/dao/SysRoleDao.go in the component Background Managemen...
CVE-2022-2678
A vulnerability was found in SourceCodester Alphaware Simple E-Commerce System. It has been declared as critical. This vulnerability affects unknown code of the file adminfeature.php of the component Background Management Page. The manipulation leads to unrestricted upload. The attack can be...
CVE-2025-3688
A vulnerability, which was classified as problematic, was found in mirweiye Seven Bears Library CMS 2023. This affects an unknown part of the component Background Management Page. The manipulation leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has been...
CVE-2025-3688 mirweiye Seven Bears Library CMS Background Management Page cross site scripting
A vulnerability, which was classified as problematic, was found in mirweiye Seven Bears Library CMS 2023. This affects an unknown part of the component Background Management Page. The manipulation leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has been...
CVE-2025-3688
CVE-2025-3688 concerns mirweiye Seven Bears Library CMS (2023) with a cross-site scripting flaw in an unspecified portion of the Background Management Page. The vulnerability enables remote initiation of an attack and has been publicly disclosed. The available documents do not specify affected ve...
Seven Bears Library CMS 代码注入漏洞
Seven Bears Library CMS is a content management system by mirweiye Personal Developer. A code injection vulnerability exists in Seven Bears Library CMS version 2023, which stems from the vulnerability of the Background Management Page component to cross-site scripting attacks...
Out-of-bounds
A vulnerability was found in SourceCodester Alphaware Simple E-Commerce System. It has been declared as critical. This vulnerability affects unknown code of the file adminfeature.php of the component Background Management Page. The manipulation leads to unrestricted upload. The attack can be...