EUVD-2018-9168

Malware in sbrugna...

zzcms SQL Injection Vulnerability (CNVD-2019-13262)

ZZCMS is a content management system CMS by the ZZCMS team in China. A SQL injection vulnerability exists in the /user/jobmanage.php file in ZZCMS version 8.3. A remote attacker can exploit this vulnerability to execute SQL commands with the help of the 'bigclass' parameter...

Sql injection

zzcms v8.3 has a SQL injection in /user/jobmanage.php via the bigclass parameter...

Design/Logic Flaw

MetInfo 6.1.2 has XSS via the /admin/index.php bigclass parameter in an n=column&a=doadd action...

CVE-2018-18296

MetInfo 6.1.2 has XSS via the /admin/index.php bigclass parameter in an n=column&a=doadd action...

CVE-2018-18296

CVE-2018-18296 describes a cross-site scripting (XSS) vulnerability in MetInfo 6.1.2. The issue is triggered via the parameter path /admin/index.php with the bigclass parameter when the request uses n=column&a=doadd. The connected sources corroborate the same vulnerability description across mult...

MetInfo Cross-Site Scripting Vulnerability (CNVD-2019-09131)

MetInfo is a Content Management System CMS developed using PHP and Mysql. A cross-site scripting vulnerability exists in MetInfo 6.1.2, which can be exploited by an attacker via the /admin/index.php bigclass parameter in the n=column&a=doadd operation...

Multiple SQL Injection Vulnerabilities in ZZCMS 7.2

ZZCMS is an enterprise website builder. A SQL injection vulnerability exists in the username parameter on the /reg/userregcheckemail.php page, the bigclass parameter on the zt/zs.php page, and the pagesize parameter on the /zh/zh.php page. An attacker can exploit the vulnerabilities to obtain...