15 matches found
EUVD-2020-11684
Malware in sbrugna...
CVE-2020-36136
SQL Injection vulnerability in cskaza cszcms version 1.2.9, allows attackers to gain sensitive information via pmsendmail parameter in cszmodel.php...
CVE-2020-36136
SQL Injection vulnerability in cskaza cszcms version 1.2.9, allows attackers to gain sensitive information via pmsendmail parameter in cszmodel.php...
CVE-2020-36136
SQL Injection vulnerability in cskaza cszcms version 1.2.9, allows attackers to gain sensitive information via pmsendmail parameter in cszmodel.php...
Sql injection
SQL Injection vulnerability in cskaza cszcms version 1.2.9, allows attackers to gain sensitive information via pmsendmail parameter in cszmodel.php...
CVE-2020-36136
SQL Injection vulnerability in cskaza cszcms version 1.2.9, allows attackers to gain sensitive information via pmsendmail parameter in cszmodel.php...
PT-2023-11807 · Cskaza · Csz Cms
Name of the Vulnerable Software and Affected Versions: cskaza cszcms version 1.2.9 Description: The issue allows attackers to gain sensitive information via the pm sendmail parameter in csz model.php. This is a SQL Injection vulnerability, which can be exploited to obtain sensitive data...
CVE-2020-36136
CVE-2020-36136 affects the CSZCMS package from the vendor path cskaza, specifically version 1.2.9. The root cause is a lack of validation of externally supplied SQL statements in the pm_sendmail parameter within csz_model.php, enabling an attacker to perform SQL Injection and potentially access s...
CVE-2020-36136
SQL Injection vulnerability in cskaza cszcms version 1.2.9, allows attackers to gain sensitive information via pmsendmail parameter in cszmodel.php...
CVE-2020-19786
File upload vulnerability in CSKaza CSZ CMS v.1.2.2 fixed in v1.2.4 allows attacker to execute aritrary commands and code via crafted PHP file...
CVE-2020-19786
File upload vulnerability in CSKaza CSZ CMS v.1.2.2 fixed in v1.2.4 allows attacker to execute aritrary commands and code via crafted PHP file...
Unrestricted file upload
File upload vulnerability in CSKaza CSZ CMS v.1.2.2 fixed in v1.2.4 allows attacker to execute aritrary commands and code via crafted PHP file...
CVE-2020-19786
File upload vulnerability in CSKaza CSZ CMS v.1.2.2 fixed in v1.2.4 allows attacker to execute aritrary commands and code via crafted PHP file...
CVE-2020-19786
File upload vulnerability in CSKaza CSZ CMS v.1.2.2 fixed in v1.2.4 allows attacker to execute aritrary commands and code via crafted PHP file...
CVE-2020-19786
CVE-2020-19786 : A file upload vulnerability affects CSKaza CSZ CMS version 1.2.2, caused by an insecure crafted PHP file that enables arbitrary command and code execution. The issue is fixed in version 1.2.4. Exploitation is described in public CVE records and references; CVSSv3.1 metrics indica...