25 matches found
EUVD-2025-21367
Malicious code in bioql PyPI...
EUVD-2025-21364
Malicious code in bioql PyPI...
CVE-2025-51657
SemCms v5.0 was discovered to contain a SQL injection vulnerability via the lgid parameter at SEMCMSLink.php...
CVE-2025-51660
SemCms v5.0 was discovered to contain a SQL injection vulnerability via the lgid parameter at SEMCMSProducts.php...
CVE-2025-51657
SemCms v5.0 was discovered to contain a SQL injection vulnerability via the lgid parameter at SEMCMSLink.php...
CVE-2025-51657
SemCms v5.0 was discovered to contain a SQL injection vulnerability via the lgid parameter at SEMCMSLink.php...
CVE-2025-51660
SemCms v5.0 was discovered to contain a SQL injection vulnerability via the lgid parameter at SEMCMSProducts.php...
CVE-2025-51660
SemCms v5.0 was discovered to contain a SQL injection vulnerability via the lgid parameter at SEMCMSProducts.php...
CVE-2025-51657
SemCms v5.0 is affected by a SQL injection vulnerability in the lgid parameter of SEMCMS_Link.php. Root cause: unsanitized input leads to potential data disclosure/integrity impact (C/L I/L A:N). Exploitation status not described in provided documents; no in-wild exploit details are given. Releva...
CVE-2025-51660
SemCms v5.0 was discovered to contain a SQL injection vulnerability via the lgid parameter at SEMCMSProducts.php...
CVE-2025-51657
SemCms v5.0 was discovered to contain a SQL injection vulnerability via the lgid parameter at SEMCMSLink.php...
CVE-2025-51660
SemCms v5.0 was discovered to contain a SQL injection vulnerability via the lgid parameter at SEMCMSProducts.php...
SEMCMS 安全漏洞
SEMCMS is SEMCMS open source content management system CMS for foreign trade websites that supports multiple languages. A security vulnerability exists in SEMCMS v5.0, which originates from SQL injection of the lgid parameter in SEMCMSProducts.php...
CVE-2025-51660
SemCms v5.0 contains a SQL injection vulnerability in the lgid parameter of SEMCMS_Products.php. The issue is documented across multiple sources and is confirmed by CVE-2025-51660 with CVSSv3.1 metrics indicating a Network attack vector, Low attack complexity, Low privileges required, and impacts...
PT-2025-29500 · Semcms · Semcms
Name of the Vulnerable Software and Affected Versions: SemCms version 5.0 Description: SemCms version 5.0 contains a SQL injection vulnerability. The vulnerability is located in the lgid parameter at the SEMCMS Products.php file. Recommendations: As a temporary workaround, consider restricting...
The vulnerability of the SEMCMS_Download.php script of the website management system for foreign trade enterprises SemCms allows a hacker to execute arbitrary SQL queries and gain unauthorized access to protected information.
The vulnerability of the SEMCMSDownload.php script of the website management system for SemCms foreign trade enterprises is related to the lack of measures to protect the SQL query structure. Exploiting this vulnerability allows an attacker to execute arbitrary SQL queries and gain unauthorized...
CVE-2024-36801
A SQL injection vulnerability in SEMCMS v.4.8, allows a remote attacker to obtain sensitive information via the lgid parameter in Download.php...
CVE-2024-36801
A SQL injection vulnerability in SEMCMS v.4.8, allows a remote attacker to obtain sensitive information via the lgid parameter in Download.php...
CVE-2024-36801
A SQL injection vulnerability in SEMCMS v.4.8, allows a remote attacker to obtain sensitive information via the lgid parameter in Download.php...
CVE-2024-31009
SQL injection vulnerability in SEMCMS v.4.8, allows a remote attacker to obtain sensitive information via lgid parameter in Banner.php...