Lucene search
K

4 matches found

CVE
CVE
added 2020/02/12 2:30 p.m.54 views

CVE-2015-5617

CVE-2015-5617 describes a SQL injection in Enorth Webpublisher CMS via /pub/m_pending_news/delete_pending_news.jsp. The parameter cbNewsId is read and used in a SQL DELETE built by PendingNewsBean.deletePendingNews, concatenating IDs into an IN clause without sufficient validation. A remote attac...

9.8CVSS9.9AI score0.0199EPSS
Exploits4References2Affected Software1
seebug.org
seebug.org
added 2015/09/02 12:0 a.m.42 views

Enorth Webpublisher CMS SQL Injection from delete_pending_news.jsp

Title:CVE-2015-5617Enorth Webpublisher CMS SQL Injection from deletependingnews.jsp cbNewsidVendor:http://products.enorth.com.cn/bfnrglxt/index.shtmlEnorth Webpublisher CMS so far of the scale of tens of thousands of web sites, with the government, enterprises, scientific research and education a...

9.9AI score0.0199EPSS
Exploits4
0day.today
0day.today
added 2015/08/14 12:0 a.m.47 views

Enorth Webpublisher CMS SQL Injection Vulnerability

Enorth Webpublisher CMS suffers from a remote SQL injection vulnerability. Title: ==== CVE-2015-5617Enorth Webpublisher CMS SQL Injection from deletependingnews.jsp cbNewsid Vendor: ====== http://products.enorth.com.cn/bfnrglxt/index.shtml Enorth Webpublisher CMS so far of the scale of tens of...

9.9AI score0.0199EPSS
Exploits4
Packet Storm
Packet Storm
added 2015/08/13 12:0 a.m.45 views

Enorth Webpublisher CMS SQL Injection

Title: ==== CVE-2015-5617Enorth Webpublisher CMS SQL Injection from deletependingnews.jsp cbNewsid Vendor: ====== http://products.enorth.com.cn/bfnrglxt/index.shtml Enorth Webpublisher CMS so far of the scale of tens of thousands of web sites, with the government, enterprises, scientific research...

0.0199EPSS
Exploits4
Rows per page
Query Builder