CVE-2019-16312

s-cms V3.0 has XSS in index.php?type=text via the Sid parameter...

EUVD-2019-7102

Malware in sbrugna...

CVE-2022-28114

DSCMS v3.0 was discovered to contain an arbitrary file deletion vulnerability via /controller/Adv.php...

CVE-2022-28114

CVE-2022-28114 affects DSCMS v3.0, where an arbitrary file deletion vulnerability is triggered via the endpoint /controller/Adv.php. The available connected sources confirm the issue exists in DSCMS v3.0 and describe the impact as arbitrary file deletion. No specific exploit details, affected fil...

CVE-2019-16312

s-cms V3.0 has XSS in index.php?type=text via the Sid parameter...

Design/Logic Flaw

s-cms V3.0 has XSS in index.php?type=text via the Sid parameter...

CVE-2019-16312

s-cms V3.0 has XSS in index.php?type=text via the Sid parameter...

Sql injection

SQL Injection was found in S-CMS version V3.0 via the alipay/alipayapi.php Oid parameter...

CVE-2019-6805

CVE-2019-6805 is a SQL injection vulnerability in S-CMS v3.0, exploitable via the alipay/alipayapi.php O_id parameter. The issue allows partial to full disclosure/impact on confidentiality, integrity, and availability (per CVSS 2.0/3.0 vectors; base scores 7.5 and 9.8 respectively). The provided ...

Sql injection

S-CMS V3.0 has SQL injection via the Sid parameter, as demonstrated by the /1/?type=productinfo&Sid=140 URI...

CVE-2018-20018

S-CMS V3.0 has SQL injection via the Sid parameter, as demonstrated by the /1/?type=productinfo&Sid=140 URI...

CVE-2018-20018

S-CMS V3.0 has SQL injection via the Sid parameter, as demonstrated by the /1/?type=productinfo&Sid=140 URI...

CVE-2017-14601

Pragyan CMS v3.0 is vulnerable to a Boolean-based SQL injection in cms/admin.lib.php via $GET'forwhat', resulting in Information Disclosure...

CVE-2017-14600

Pragyan CMS v3.0 is vulnerable to an Error-Based SQL injection in cms/admin.lib.php via $GET'delblack', resulting in Information Disclosure...

CVE-2017-14600

Pragyan CMS v3.0 is vulnerable to an Error-Based SQL injection in cms/admin.lib.php via the GET parameter del_black, leading to Information Disclosure. The vulnerability is documented across multiple connected sources (NVD, Red Hat, CVE lists) with consistent wording; no exploitation or remediati...

Pragyan CMS 3.0 - Remote File Disclosure

Pragyan CMS 3.0 - Remote File Disclosure Title Pragyan CMS v 3.0 = Remote File Disclosure Author Or4nG.M4n Download http://space.dl.sourceforge.net/project/pragyan/pragyan/3.0/PragyanCMS-v3.0-beta.tar.bz2 vuln download.lib.php line 16 vuln index.php line 234 $GET'fileget' exploit...

Quick. CMS v3. 0 CSRF flaws and fixes-vulnerability warning-the black bar safety net

Exploit Title: Quick CMS v3. 0 Cross Site Request Forgery Add Admin User + Author : ^Xecuti0n3r + E-mail : xecuti0n3ryahoo.com + Category : Web Apps XSRF + Dork : intext:"Quick. Cms v3. 0" inurl:admin.php + Demo CMS Link: http://opensolution.org/Quick.Cms 1 1 0 I'm ^Xecuti0n3r member from...

Quick CMS v3.0 Cross Site Request Forgery (Add Admin User)

Exploit for php platform in category web applications + Exploit Title: Quick CMS v3.0 Cross Site Request Forgery Add Admin User + Author : ^Xecuti0n3r + E-mail : xecuti0n3ryahoo.com + Category : Web Apps XSRF + Dork : intext:"Quick.Cms v3.0" inurl:admin.php + Demo CMS Link:...

Quick.CMS 3.0 - Cross-Site Request Forgery

Exploit Title: Quick CMS v3.0 Cross Site Request Forgery Add Admin User + Author : ^Xecuti0n3r + E-mail : xecuti0n3ryahoo.com + Category : Web Apps XSRF + Dork : intext:"Quick.Cms v3.0" inurl:admin.php + Demo CMS Link: http://opensolution.org/Quick.Cms 1 1 0 I'm ^Xecuti0n3r member from Inj3ct0r...

Quick CMS 3.0 Cross Site Request Forgery

================================ + Exploit Title: Quick CMS v3.0 Cross Site Request Forgery Add Admin User + Author : ^Xecuti0n3r + E-mail : xecuti0n3ryahoo.com + Category : Web Apps XSRF + Dork : intext:"Quick.Cms v3.0" inurl:admin.php + Demo CMS Link:...