8 matches found
CVE-2023-50073
EmpireCMS v7.5 was discovered to contain a SQL injection vulnerability via the ftppassword parameter at SetEnews.php...
EUVD-2018-9824
Malware in sbrugna...
EUVD-2023-54988
Malicious code in bioql PyPI...
CVE-2023-50162
EmpireCMS v7.5 is affected by CVE-2023-50162 due to a SQL injection in the DoExecSql function. The vulnerability allows remote attackers to run arbitrary SQL, potentially leading to code execution and exposure of sensitive data. Root cause: lack of validation of externally supplied SQL statements...
CVE-2023-50162
SQL injection vulnerability in EmpireCMS v7.5, allows remote attackers to execute arbitrary code and obtain sensitive information via the DoExecSql function...
CVE-2023-50073
EmpireCMS v7.5 was discovered to contain a SQL injection vulnerability via the ftppassword parameter at SetEnews.php...
Code Execution Vulnerability in EmpireCMS v7.5 Backend
EmpireCMS is an open source software program that runs on a PHP MySQL database. A code execution vulnerability exists in the EmpireCMS v7.5 backend, which can be exploited by an attacker to upload Trojan horse files and execute system commands...
CVE-2018-18869
EmpireCMS V7.5 allows remote attackers to upload and execute arbitrary code via ..%2F directory traversal in a .php filename in the upload/e/admin/ecmscom.php path parameter...