CVE-2024-31011

Arbitrary file write vulnerability in beescms v.4.0, allows a remote attacker to execute arbitrary code via a file path that was not isolated and the suffix was not verified in admintemplate.php...

CVE-2020-22334

Cross Site Request Forgery CSRF vulnerability in beescms v4 allows attackers to delete the administrator account via crafted request to /admin/adminadmin.php...

BEESCMS suffers from an override access vulnerability

BEESCMS is a scalable content management system CMS based on PHP and MySQL. BEESCMS suffers from an override access vulnerability. An attacker can exploit the vulnerability to log in to the administrator backend without a password...

SQL Injection Vulnerability in BEESCMS

BEESCMS adopts PHP+MYSQL is a multi-language system, the content module is easy to expand, and the template style is diversified. BEESCMS SQL injection vulnerability, attackers can use the vulnerability to obtain sensitive database information...

Code Execution Vulnerability in BEESCMS

BEESCMS Enterprise Website Management System - PHP+MYSQL, multi-language system, easy to expand content modules, diversified template styles, simple and powerful template production, professional SEO optimization, easy to operate in the background. BEESCMS has a code execution vulnerability that...

Arbitrary File Read Vulnerability in BEESCMS

BEESCMS is a scalable content management system CMS based on PHP and MySQL. BEESCMS suffers from an arbitrary file read vulnerability that can be exploited by attackers to obtain sensitive information...

SQL injection vulnerability in beescm backend ad***_as***.php file

BEESCMS is a PHP+MYSQL architecture, multi-language system, easy to expand the content module, diversified template styles, can meet the corporate website, foreign trade websites, institutions, educational institutions, personal websites. There is a SQL injection vulnerability in the adas.php fil...