Malicious code in LMX-Data (npm)

The package LMX-Data was found to contain malicious code...

MAL-2025-25465 Malicious code in LMX-Data (npm)

The package LMX-Data was found to contain malicious code...

CVE-2025-4541

A vulnerability classified as critical has been found in LmxCMS 1.41. Affected is the function manageZt of the file c\admin\ZtAction.class.php of the component POST Request Handler. The manipulation of the argument sortid leads to sql injection. It is possible to launch the attack remotely. The...

CVE-2021-35437

SQL injection vulnerability in LMXCMS v.1.4 allows attacker to execute arbitrary code via the TagsAction.class...

Code Execution Vulnerability in LmxCMS V1.4

Dream cms lmxcms is developed using php language and mysql database, and adopts the mainstream MVC design mode. A code execution vulnerability exists in LmxCMS V1.4, which can be exploited by attackers to gain server privileges...

LmxCMS V1.4 SQL Injection Vulnerability in Frontend Se***.cl***.php

Dream Cms, hereinafter referred to as "lmxcms", is a simple and practical website management system cms developed by "10 years" screen name. A SQL injection vulnerability exists in LmxCMS V1.4 frontend Se.cl.php. An attacker can exploit the vulnerability to obtain sensitive database information...

LmxCMS V1.4 SQL Injection Vulnerability in Frontend Ta***.cl***.php

Dream Cms, hereinafter referred to as "lmxcms", is a simple and practical website management system cms developed by "10 years" screen name. A SQL injection vulnerability exists in LmxCMS V1.4 frontend Ta.cl.php. An attacker can exploit the vulnerability to obtain sensitive database information...

rtmpdump: multiple issues

Several issues have been found in the part of rtmpdump handling RTMP streams by LMX of Qihoo 360 Codesafe Team. These issues include memory leak, integer overflow, type confusion when dealing with AMF strings and objects, and several other parsing issues...