CVE-2023-50073

EmpireCMS v7.5 was discovered to contain a SQL injection vulnerability via the ftppassword parameter at SetEnews.php...

CVE-2023-50073

EmpireCMS v7.5 was discovered to contain a SQL injection vulnerability via the ftppassword parameter at SetEnews.php...

CVE-2023-50073

EmpireCMS v7.5 was discovered to contain a SQL injection vulnerability via the ftppassword parameter at SetEnews.php...

CVE-2023-50073

EmpireCMS v7.5 was discovered to contain a SQL injection vulnerability via the ftppassword parameter at SetEnews.php...

Sql injection

EmpireCMS v7.5 was discovered to contain a SQL injection vulnerability via the ftppassword parameter at SetEnews.php...

CVE-2023-50073

EmpireCMS v7.5 was discovered to contain a SQL injection vulnerability via the ftppassword parameter at SetEnews.php...

CVE-2023-50073

EmpireCMS v7.5 contains a SQL injection vulnerability exposed by the ftppassword parameter in SetEnews.php. The root cause is lack of validation/external input handling for ftppassword, enabling malicious SQL statements and potential unauthorized data access. Several connected records confirm the...

PT-2023-31469 · Empirecms · Empirecms

Name of the Vulnerable Software and Affected Versions: EmpireCMS version 7.5 Description: The issue is a SQL injection vulnerability. It occurs via the ftppassword parameter at the "SetEnews.php" endpoint. Recommendations: For EmpireCMS version 7.5, consider restricting access to the "SetEnews.ph...

EmpireCMS 安全漏洞

EmpireCMS Empire Content Management System is an open source content management system CMS. SQL injection vulnerability exists in EmpireCMS v7.5, the vulnerability stems from the lack of validation of the ftppassword parameter in SetEnews.php for external input SQL statements, which can be...

Security Bulletin: IBM MQ and IBM MQ Appliance could allow a local attacker to obtain sensitive information. (CVE-2020-4338)

Summary An incomplete fix for CVE-2019-4719 in IBM MQ and IBM MQ Appliance could still allow attackers to obtain sensitive information. Vulnerability Details CVEID: CVE-2020-4338 DESCRIPTION: IBM MQ could allow a local attacker to obtain sensitive information by inclusion of sensitive data within...

Security Bulletin: IBM MQ and IBM MQ Appliance could allow a local attacker to obtain sensitive information. (CVE-2019-4719)

Summary IBM MQ and IBM MQ Appliance could allow a local attacker to obtain sensitive information by inclusion of sensitive data within runmqras data. Vulnerability Details CVEID: CVE-2019-4719 DESCRIPTION: IBM MQ could allow a local attacker to obtain sensitive information by inclusion of sensiti...