CVE-2024-1817

A vulnerability has been found in Demososo DM Enterprise Website Building System up to 2022.8 and classified as critical. Affected by this vulnerability is the function dmlogin of the file indexDMload.php of the component Cookie Handler. The manipulation of the argument isadmin with the input y...

PT-2024-18332 · Demososo · Demososo Dm Enterprise Website Building System

Name of the Vulnerable Software and Affected Versions: Demososo DM Enterprise Website Building System versions up to 2022.8 Description: A critical issue has been found, affecting the function dmlogin of the file indexDM load.php in the Cookie Handler component. The manipulation of the argument i...

Arbitrary File Deletion Vulnerability in DM Enterprise Website System

DM building system is developed by php + mysql a set of specialized for small and medium-sized enterprise website construction of open source cms. DM enterprise website builder system exists arbitrary file deletion vulnerability. Attackers can use this vulnerability to delete arbitrary files...

SQL Injection Vulnerability in DM Enterprise Website System

DM building system is developed by php + mysql a set of specialized for small and medium-sized enterprise website construction of open source cms. DM enterprise website builder system multiple parameters exist SQL injection vulnerability , attackers can use the vulnerability to obtain sensitive...

SQL Injection Vulnerability in DM Enterprise Building System Search Function

DM building station is a set of open source cms developed by php + mysql. DM enterprise building system search function exists SQL injection vulnerability. Attackers can use the vulnerability to obtain database sensitive information...

DM enterprise built Station system \indexDM_load.php variable lang SQL injection

No description provided by source...