Lucene search
K

10 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 12:0 p.m.13 views

CVE-2018-19220

An issue was discovered in LAOBANCMS 2.0. It allows remote attackers to execute arbitrary PHP code via the host parameter to the install/ URI...

9.8CVSS8.1AI score0.0167EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.2 views

EUVD-2018-10931

Malware in sbrugna...

9.8CVSS9.5AI score0.01422EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2018-10929

Malware in sbrugna...

9.8CVSS9.5AI score0.0167EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2018-10933

Malware in sbrugna...

7.5CVSS7.6AI score0.0098EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2018-10935

Malware in sbrugna...

5.3CVSS5.5AI score0.01177EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2018-10934

Malware in sbrugna...

8.8CVSS8.8AI score0.00523EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2025/05/22 6:54 a.m.10 views

CVE-2018-19227

An issue was discovered in LAOBANCMS 2.0. It allows XSS via the admin/liuyan.php neirong parameter...

5.4CVSS5.8AI score0.00556EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 6:25 a.m.4 views

CVE-2018-19222

An issue was discovered in LAOBANCMS 2.0. It allows a /install/mysqlhy.php?riqi=0=0 attack to reset the admin password, even if install.txt exists...

9.8CVSS6.8AI score0.01422EPSS
Exploits1References1
BDU FSTEC
BDU FSTEC
added 2021/06/29 12:0 a.m.3 views

The vulnerability of the admin/info.php?shuyu component of the LAOBANCMS software allows a hacker to execute arbitrary code.

The vulnerability of the admin/info.php?shuyu component of the LAOBANCMS software is related to the lack of protective measures for the website structure. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

5.5CVSS6AI score0.00865EPSS
Exploits1References2Affected Software1
CNVD
CNVD
added 2021/05/14 12:0 a.m.9 views

LAOBANCMS cross-site scripting vulnerability (CNVD-2021-34495)

LAOBANCMS is a content management system based on PHP and MySQL. A cross-site scripting vulnerability exists in LAOBANCMS version 2.0. An attacker can execute arbitrary code by injecting commands into the "Website SEO Keywords" field on the "admin/info.php?shuyu" page...

4.8CVSS7.1AI score0.00914EPSS
Exploits1References1
Rows per page
Query Builder