Logic flaw vulnerability in Douphp lo***.php file

DouPHP is a lightweight enterprise website management system based on PHP+Mysql architecture, running on various platforms such as Linux, Windows, MacOSX, Solaris and so on. A logic flaw vulnerability exists in the Douphp lo.php file. Attackers can capture packets for blasting and obtain sensitiv...

Arbitrary File Deletion Vulnerability in DouPHP

DouPHP is a lightweight enterprise website management system based on PHP+Mysql architecture, running on various platforms such as Linux, Windows, MacOSX, Solaris and so on. DouPHP has an arbitrary file deletion vulnerability, which can be exploited by attackers to cause system reinstallation...

Code execution vulnerability exists in DouPHP (CNVD-2019-29926)

DouPHP is a lightweight enterprise website management system based on PHP+Mysql architecture, running on various platforms such as Linux, Windows, MacOSX, Solaris and so on. DouPHP has a code execution vulnerability that can be exploited by attackers to gain control of the web server...

Code Execution Vulnerability in DouPHP_1.5

DouPHP1.5 is a lightweight enterprise website management system, based on PHP+Mysql architecture, running on Linux, Windows, MacOSX, Solaris and other platforms. DouPHP1.5 suffers from a code execution vulnerability that can be exploited by attackers to execute arbitrary code...

DouPHP_1.5 Arbitrary File Deletion Vulnerability

DouPHP1.5 is a lightweight enterprise website management system based on PHP+Mysql architecture, running on Linux, Windows, MacOSX, Solaris and other platforms. DouPHP1.5 has an arbitrary file deletion vulnerability that can be exploited by attackers to delete files arbitrarily...

DouPHP BLOG Arbitrary File Deletion Vulnerability

DouPHPBLOG1.5 is a lightweight enterprise website management system based on PHP+Mysql architecture, which can run on Linux, Windows, MacOSX, Solaris and other platforms. DouPHPBLOG1.5 suffers from an arbitrary file deletion vulnerability, which can be exploited by attackers to reinstall the...

Command Execution Vulnerability in DouPHP BLOG

DouPHPBLOG1.5 is a lightweight enterprise website management system, based on PHP+Mysql architecture, running on Linux, Windows, MacOSX, Solaris and other platforms. DouPHPBLOG1.5 suffers from a code execution vulnerability that can be exploited by an attacker to gain control of the server...

Design/Logic Flaw

In DouCo DouPHP v1.5 Release 20190516, remote attackers can view the database backup file via a brute-force guessing approach for data/backup/DyyyymmddThhmmss.sql filenames...

CVE-2019-12564

In DouCo DouPHP v1.5 Release 20190516, remote attackers can view the database backup file via a brute-force guessing approach for data/backup/DyyyymmddThhmmss.sql filenames...

CVE-2019-12564

In DouCo DouPHP v1.5 Release 20190516, remote attackers can view the database backup file via a brute-force guessing approach for data/backup/DyyyymmddThhmmss.sql filenames...

CVE-2019-12564

In DouCo DouPHP v1.5 Release 20190516, remote attackers can view the database backup file via a brute-force guessing approach for data/backup/DyyyymmddThhmmss.sql filenames...

CVE-2019-12564

CVE-2019-12564 affects DouCo DouPHP v1.5 Release 20190516. The issue allows remote attackers to view database backups by brute-forcing filenames data/backup/DyyyymmddThhmmss.sql, leading to partial/backup data exposure. Connected Red Hat and NVD entries corroborate the vulnerability description; ...

DouPHP suffers from an application reinstallation vulnerability

DouPHP is a lightweight enterprise website management system based on PHP+Mysql architecture, running on various platforms such as Linux, Windows, MacOSX, Solaris and so on. DouPHP suffers from an application reinstallation vulnerability. An attacker can exploit the vulnerability to reinstall the...

DouCo DouPHP Cross-Site Scripting Vulnerability (CNVD-2019-00999)

DouCo DouPHP is a lightweight open source CMS Content Management System based on PHP and MySQL. A cross-site scripting vulnerability exists in admin/article.php?rec=update in DouCo DouPHP version 1.5 20181221. A remote attacker can exploit this vulnerability to inject arbitrary web script or HTML...

DouCo DouPHP Cross-Site Scripting Vulnerability (CNVD-2019-01001)

DouCo DouPHP is a lightweight open source CMS Content Management System based on PHP and MySQL. A cross-site scripting vulnerability exists in admin/mobile.php?rec=system&act=update in DouCo DouPHP version 1.5 20181221. A remote attacker can exploit this vulnerability to inject arbitrary web scri...

DouCo DouPHP Cross-Site Scripting Vulnerability

DouCo DouPHP is a lightweight open source CMS Content Management System based on PHP and MySQL. A cross-site scripting vulnerability exists in admin/nav.php?rec=update in DouCo DouPHP version 1.5 20181221. A remote attacker can exploit this vulnerability to inject arbitrary web script or HTML wit...

DouCo DouPHP Cross-Site Scripting Vulnerability (CNVD-2019-00996)

DouCo DouPHP is a lightweight open source CMS Content Management System based on PHP and MySQL. A cross-site scripting vulnerability exists in admin/system.php?rec=update in DouCo DouPHP version 1.5 20181221. A remote attacker can exploit this vulnerability to inject arbitrary web script or HTML...

DouCo DouPHP cross-site scripting vulnerability (CNVD-2019-00997)

DouCo DouPHP is a lightweight open source CMS Content Management System based on PHP and MySQL. A cross-site scripting vulnerability exists in admin/product.php?rec=update in DouCo DouPHP version 1.5 20181221. A remote attacker can exploit this vulnerability to inject arbitrary web script or HTML...

DouCo DouPHP Cross-Site Scripting Vulnerability (CNVD-2019-01002)

DouCo DouPHP is a lightweight open source CMS Content Management System based on PHP and MySQL. A cross-site scripting vulnerability exists in admin/productcategory.php?rec=update in DouCo DouPHP version 1.5 20181221. A remote attacker can exploit this vulnerability to inject arbitrary web script...

DouCo DouPHP Information Disclosure Vulnerability

DouCo DouPHP is a lightweight open source CMS Content Management System based on PHP and MySQL. A security vulnerability exists in DouCo DouPHP version 1.5 20181221. An attacker can exploit the vulnerability to obtain the full path in the error message 'Smarty error: unable to read resource' with...