55 matches found
CVE-2022-34121
Cuppa CMS v1.0 was discovered to contain a local file inclusion LFI vulnerability via the component /templates/default/html/windows/right.php...
CVE-2022-26613
PHP-CMS v1.0 was discovered to contain a SQL injection vulnerability via the category parameter in categorymenu.php...
CVE-2020-18259
ED01-CMS v1.0 was discovered to contain a reflective cross-site scripting XSS vulnerability in the component sposts.php. This vulnerability allows attackers to execute arbitrary web scripts or HTML via a crafted payload inserted into the Post title or Post content fields...
CVE-2024-48758
dingfanzu CMS V1.0 was discovered to contain a Cross-Site Request Forgery CSRF via the addPro parameter of the component doAdminAction.php which allows a remote attacker to execute arbitrary code...
Sql injection
hansun CMS v1.0 was discovered to contain a SQL injection vulnerability via the component /ajax/ajaxlogin.ashx...
CVE-2023-39681
Cuppa CMS v1.0 was discovered to contain a remote code execution RCE vulnerability via the emailoutgoing parameter at /Configuration.php. This vulnerability is triggered via a crafted payload...
Gravigra CMS 1.0 SQL Injection
==================================================================================================================================== | Title : Gravigra CMS v1.0 Sql injection Vulnerability | | Author : indoushka | | Tested on : windows 10 Français V.Pro / browser : Mozilla firefox 63.0.3 32-bit |...
CVE-2023-34917
Fuge CMS v1.0 contains an Open Redirect vulnerability in member/RegisterAct.java...
Open redirect
Fuge CMS v1.0 contains an Open Redirect vulnerability in member/RegisterAct.java...
Open redirect
Fuge CMS v1.0 contains an Open Redirect vulnerability via /front/ProcessAct.java...
CVE-2023-34916
Fuge CMS v1.0 contains an Open Redirect vulnerability via /front/ProcessAct.java...
CVE-2023-34917
Fuge CMS v1.0 contains an Open Redirect vulnerability in member/RegisterAct.java...
CVE-2023-34917
Fuge CMS v1.0 contains an Open Redirect vulnerability in member/RegisterAct.java...
CVE-2022-38296
Cuppa CMS v1.0 was discovered to contain an arbitrary file upload vulnerability via the File Manager...
Design/Logic Flaw
Cuppa CMS v1.0 was discovered to contain an arbitrary file upload vulnerability via the File Manager...
CVE-2022-38296
Cuppa CMS v1.0 was discovered to contain an arbitrary file upload vulnerability via the File Manager...
Sql injection
Kensite CMS v1.0 was discovered to contain multiple SQL injection vulnerabilities via the name and oldname parameters at /framework/mod/db/DBMapper.xml...
CVE-2022-27412
Explore CMS v1.0 was discovered to contain a SQL injection vulnerability via a /page.php?id= request...
Sql injection
Explore CMS v1.0 was discovered to contain a SQL injection vulnerability via a /page.php?id= request...
CVE-2022-27412
Explore CMS v1.0 was discovered to contain a SQL injection vulnerability via a /page.php?id= request...