Lucene search
+L

7 matches found

euvd
euvd
added 2025/10/07 12:30 a.m.5 views

EUVD-2018-10212

Malware in sbrugna...

7.5CVSS7.6AI score0.01208EPSS
Exploits1References2
nvd
nvd
added 2018/10/18 9:29 p.m.13 views

CVE-2018-18487

In \lib\admin\action\dataaction.class.php in Gxlcms v2.0, the database backup filename generation uses mtrand unsafely, resulting in predictable database backup file locations...

7.5CVSS7.5AI score0.01208EPSS
Exploits1References1
prion
prion
added 2018/10/18 9:29 p.m.17 views

Design/Logic Flaw

In \lib\admin\action\dataaction.class.php in Gxlcms v2.0, the database backup filename generation uses mtrand unsafely, resulting in predictable database backup file locations...

5CVSS7.5AI score0.01208EPSS
Exploits1References1Affected Software1
prion
prion
added 2018/10/18 9:29 p.m.16 views

Sql injection

In \lib\admin\action\dataaction.class.php in Gxlcms v2.0, SQL Injection exists via the ids parameter...

7.5CVSS9.8AI score0.01135EPSS
Exploits1References1Affected Software1
cve
cve
added 2018/10/18 9:0 p.m.42 views

CVE-2018-18487

The CVE-2018-18487 entry affects Gxlcms v2.0, specifically the database backup filename generation in \lib\admin\action\dataaction.class.php. The vulnerability stems from using mt_rand() in filename creation, causing predictable backup file locations. The documents do not provide exploit details,...

7.5CVSS7.5AI score0.01208EPSS
Exploits1References1Affected Software1
cve
cve
added 2018/10/18 9:0 p.m.42 views

CVE-2018-18488

Gxlcms v2.0 is affected by a SQL injection in the file \lib\admin\action\dataaction.class.php via the ids[] parameter. Connected sources (NVD, RH, CNVD) describe remote exploitation with arbitrary SQL execution, with network access and no authentication required (per CVSS 3.0/2.0 vectors). No con...

9.8CVSS9.8AI score0.01135EPSS
Exploits1References1Affected Software1
cvelist
cvelist
added 2018/10/18 9:0 p.m.19 views

CVE-2018-18488

In \lib\admin\action\dataaction.class.php in Gxlcms v2.0, SQL Injection exists via the ids parameter...

9.9AI score0.01135EPSS
Exploits1References1
Rows per page
Query Builder