5 matches found
WBCE CMS 1.5.1 Admin Password Reset
Exploit Title: WBCE CMS 1.5.1 - Admin Password Reset Google Dork: intext: "Way Better Content Editing" Date: 20/12/2021 Exploit Author: citril or https://github.com/maxway2021 Vendor Homepage: https://wbce.org/ Software Link: https://wbce.org/de/downloads/ Version: = 1.5.1 Tested on: Linux CVE :...
CVE-2021-3817
wbcecms is vulnerable to Improper Neutralization of Special Elements used in an SQL Command...
CVE-2021-3817
wbcecms is vulnerable to Improper Neutralization of Special Elements used in an SQL Command...
CVE-2021-3817 SQL Injection in wbce/wbce_cms
wbcecms is vulnerable to Improper Neutralization of Special Elements used in an SQL Command...
CVE-2021-3817
CVE-2021-3817 affects WBCE CMS (wbce_cms) up to version 1.5.1, with a SQL injection in the password-reset page admin/login/forgot/index.php. The root cause is improper neutralization of special elements in SQL commands, enabling an attacker to bypass authentication and potentially take control (p...