GHSA-QX44-P258-3C2V Cadmium CMS has a background arbitrary file upload vulnerability

Cadmium CMS v.0.4.9 has a background arbitrary file upload vulnerability in /admin/content/filemanager/uploads...

Cadmium CMS has a background arbitrary file upload vulnerability

Cadmium CMS v.0.4.9 has a background arbitrary file upload vulnerability in /admin/content/filemanager/uploads...

CVE-2022-40886

DedeCMS 5.7.98 has a file upload vulnerability in the background...

PT-2022-26714 · Siyucms · Siyucms

Name of the Vulnerable Software and Affected Versions: Siyucms version 6.1.7 Description: The issue is related to a remote code execution RCE vulnerability in the background of Siyucms, a content management system based on ThinkPaP5 AdminLTE. This vulnerability can be exploited by attackers to ga...

CVE-2022-36578

jizhicms v2.3.1 has SQL injection in the background...

CVE-2022-24131

DouPHP v1.6 Release 20220121 is affected by Cross Site Scripting XSS through /admin/login.php in the background, which will lead to JavaScript code execution...

OurPHP Omnicom website builder system background exists arbitrary file deletion vulnerability

OurPHP Aopia website building system is a enterprise + e-commerce marketing website building system. OurPHP website builder system has an arbitrary file deletion vulnerability in the background, which can be exploited by attackers to delete any file under the server...

74cms v4.2.111 code execution vulnerability in background Tp***.php

Knight Talent System 74cms is a PHP + MYSQL based on the core development of a set of free + open source professional recruitment system. 74cms v4.2.111 Tp.php code execution vulnerability in the background, an attacker can use the vulnerability to remotely execute code to obtain server privilege...

S-CMS Enterprise Station Building System v3.0 SQL Injection Vulnerability in Background

S-CMS enterprise station building system is Zibo Shining Network Technology Co., Ltd. developed a specialized enterprise station building solutions for the product. S-CMS v3.0 background SQL injection vulnerability, attackers can use the vulnerability to obtain sensitive database information...

File upload vulnerability in the ap***_co***.php file in the background of PHPOK enterprise website building system (CNVD-2019-21282)

PHPOK is a set of enterprise station CMS system developed in PHP + MYSQL language. A file upload vulnerability exists in the apco.php file in the background of the PHPOK enterprise website system. Remote attackers can use this vulnerability to obtain server administrative privileges...

yershop open source online store system code execution vulnerabilities exist in the background

yershop open source online store system is a thinkphp5-based mall system with a key to generate controllers , models , validators , templates , general additions and deletions , and other functions. yershop open source online store system code execution vulnerabilities exist in the background , a...

Metinfo 6.1.0 SQL Injection Vulnerability in Background

MetInfo is a content management system developed using PHP and Mysql. Version 6.1.0 of the Metinfo website builder system has a SQL injection vulnerability in the background, which can be exploited by attackers to obtain sensitive database information...

yiqicms system product-add.php has arbitrary file upload vulnerability

Yiqicms is the first marketing enterprise website system completely based on SEO-friendly development, using PHP+Mysql open source building system. Yiqicms 1.8 version of the background there are arbitrary file upload vulnerability. Allow attackers to exploit the vulnerability can upload any file...

Anwsion background feature of the design defects can be obtained SHELL-vulnerability warning-the black bar safety net

The vulnerabilities affect all versions. Binding Anwsion 0.7 all of the following versions can lead to the site being invaded. Design flaws in the code are as follows see 7 5-9 6 line will be the website background configuration is saved to the database at the same time and save to a local PHP fi...

Discuz! 7.0-7. 2 and Phpwind7. 5 Background tasteless vulnerability-vulnerability warning-the black bar safety net

A lot of people there, spread out, and then sent to. Now the loophole if the initiative is published, is definitely“no. do not publish”, otherwise is definitely hiding unless someone else posted. DZ tasteless that need the Creator's permission, the Creator of the password is generally more...

Discuz! 2 0 1 1 All version background get Webshell 0day-vulnerability warning-the black bar safety net

From Discuz! Ancient 6. 0 version, the vulnerabilities are present in the extensions, use differently, the following start. A Discuz! 6.0 and Discuz! 7.0 Since you want the background to take the Shell, the file is written to Must-see. /include/cache.func.php ! To turn on,find the calling functio...

Discuz! 7.0-7.2 & Phpwind7. 5 Background tasteless vulnerability-vulnerability warning-the black bar safety net

| Transfer from t00ls A lot of people there, spread out, and then sent to. Now the loophole if the initiative is published, is definitely“no. do not publish”, otherwise is definitely hiding unless someone else posted. DZ tasteless that need the Creator's permission, the Creator of the password is...