2 matches found
PT-2025-20663 · Lmxcms · Lmxcms
Name of the Vulnerable Software and Affected Versions: LmxCMS version 1.41 Description: A critical issue has been found in the function manageZt of the file cadminZtAction.class.php of the component POST Request Handler. The manipulation of the argument sortid leads to SQL injection. It is possib...
PT-2023-15571 · Lmxcms · Lmxcms
Name of the Vulnerable Software and Affected Versions: lmxcms version 1.41 Description: The issue is related to an arbitrary file read vulnerability. It affects the TemplateAction.class.php file, allowing unauthorized access to files. Recommendations: For lmxcms version 1.41, consider restricting...