EUVD-2009-3480

Malware in sbrugna...

CVE-2009-3498

SQL injection vulnerability in php/updatearticlehits.php in HBcms 1.7 allows remote attackers to execute arbitrary SQL commands via the articleid parameter...

HBCMS(Hongbo)1.8.3 list_resource. php blind injection vulnerability-vulnerability warning-the black bar safety net

Affected versions: HBCMSmacro-Bo=1.8.3 Vulnerability description: HBCMS is the domestic more well-known PHP content management system, not yet open source, the source code using the zend encryption. Meet the following three conditions, you can through the MySQL blind injection to get any sensitiv...

Sql injection

SQL injection vulnerability in php/updatearticlehits.php in HBcms 1.7 allows remote attackers to execute arbitrary SQL commands via the articleid parameter...

CVE-2009-3498

SQL injection vulnerability in php/updatearticlehits.php in HBcms 1.7 allows remote attackers to execute arbitrary SQL commands via the articleid parameter...

CVE-2009-3498

SQL injection vulnerability in php/updatearticlehits.php in HBcms 1.7 allows remote attackers to execute arbitrary SQL commands via the articleid parameter...

CVE-2009-3498

CVE-2009-3498 affects HBcms 1.7, with a SQL injection vulnerability in php/update_article_hits.php triggered via the article_id parameter. The issue allows remote attackers to execute arbitrary SQL commands. The vulnerability is documented with a CVSS v2 base score of 6.8 (MEDIUM). No explicit pa...

HBcms宏博内容管理系统SQL injection and XSS

updatearticlehits.php中的articleid参数没有严格过滤导致可利用双字节编码漏洞注入 =1.7版本 官方已经修复 请下载1.8版本 poc: 查询账号： http://127.0.0.1/cms/hbcms/php/updatearticlehits.php?showhits=yes&articleid=-1%e5" union select loginname from hbcmsusers where id=1%23 查询密码:...