EUVD-2022-33648

Malicious code in bioql PyPI...

CVE-2022-29307

IonizeCMS v1.0.8.1 was discovered to contain a command injection vulnerability via the function copylangcontent in application/models/langmodel.php...

CVE-2022-29306

IonizeCMS v1.0.8.1 was discovered to contain a SQL injection vulnerability via the idpage parameter in application/models/articlemodel.php...

IonizeCMS Remote Code Execution (CVE-2022-26272)

A remote code execution vulnerability exists in IonizeCMS. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

IonizeCMS Command Injection (CVE-2022-29307)

A command injection vulnerability exists in IonizeCMS. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

CVE-2022-29307

IonizeCMS v1.0.8.1 was discovered to contain a command injection vulnerability via the function copylangcontent in application/models/langmodel.php...

CVE-2022-29306

IonizeCMS v1.0.8.1 was discovered to contain a SQL injection vulnerability via the idpage parameter in application/models/articlemodel.php...

CVE-2022-29307

IonizeCMS v1.0.8.1 was discovered to contain a command injection vulnerability via the function copylangcontent in application/models/langmodel.php...

CVE-2022-29306

IonizeCMS v1.0.8.1 was discovered to contain a SQL injection vulnerability via the idpage parameter in application/models/articlemodel.php...

CVE-2022-29307

IonizeCMS v1.0.8.1 was discovered to contain a command injection vulnerability via the function copylangcontent in application/models/langmodel.php...

Command injection

IonizeCMS v1.0.8.1 was discovered to contain a command injection vulnerability via the function copylangcontent in application/models/langmodel.php...

Sql injection

IonizeCMS v1.0.8.1 was discovered to contain a SQL injection vulnerability via the idpage parameter in application/models/articlemodel.php...

CVE-2022-29306

IonizeCMS v1.0.8.1 was discovered to contain a SQL injection vulnerability via the idpage parameter in application/models/articlemodel.php...

CVE-2022-29307

IonizeCMS v1.0.8.1 was discovered to contain a command injection vulnerability via the function copylangcontent in application/models/langmodel.php...

CVE-2022-29307

IonizeCMS v1.0.8.1 contains a command-injection vulnerability in copy_lang_content() within application/models/lang_model.php, allowing remote attackers to execute arbitrary commands. Multiple connected sources (RH/CVE-2022-29307, NVD, OSV, other advisories) describe this as a remote code executi...

CVE-2022-29306

IonizeCMS v1.0.8.1 is affected by a SQL injection in the id_page parameter of application/models/article_model.php (CVE-2022-29306). The vulnerability is confirmed by multiple sources in the connected documents, with CVSSv3.1 base score 9.8 (CRITICAL) and CVSSv2 base score 7.5 (HIGH), indicating ...

IonizeCMS Cross-Site Request Forgery Vulnerability

IonizeCMS is an open source PHP content manager. IonizeCMS 1.0.8 suffers from a cross-site request forgery vulnerability, which allows an attacker to construct specific URLs to lure a system administrator into accessing them in order to create a new account with administrator privileges...

Ionize CMS 1.0.8 Cross Site Request Forgery

Exploit Title: IonizeCMS document.forms0.submit;...

IonizeCMS 1.0.8 - Cross-Site Request Forgery (Add Admin)

IonizeCMS 1.0.8 - Cross-Site Request Forgery Add Admin document.forms0.submit;...

IonizeCMS 1.0.8 - Cross-Site Request Forgery (Add Admin)

Exploit for php platform in category web applications document.forms0.submit;...