23 matches found
EUVD-2023-1327
Malicious code in bioql PyPI...
EUVD-2022-0767
Malicious code in bioql PyPI...
CVE-2021-44868
A problem was found in ming-soft MCMS v5.1. There is a sql injection vulnerability in /ms/cms/content/list.do...
CVE-2020-23262
An issue was discovered in ming-soft MCMS v5.0, where a malicious user can exploit SQL injection without logging in through /mcms/view.do...
CVE-2020-20913
SQL Injection vulnerability found in Ming-Soft MCMS v.4.7.2 allows a remote attacker to execute arbitrary code via basictitle parameter...
GHSA-HX8P-9M48-G76R Ming-Soft MCMS vulnerable to SQL injection
SQL Injection vulnerability found in Ming-Soft MCMS v.4.7.2 allows a remote attacker to execute arbitrary code via basictitle parameter. This issue is resolved in v5.1...
Ming-Soft MCMS vulnerable to SQL injection
SQL Injection vulnerability found in Ming-Soft MCMS v.4.7.2 allows a remote attacker to execute arbitrary code via basictitle parameter. This issue is resolved in v5.1...
CVE-2020-20913
SQL Injection vulnerability found in Ming-Soft MCMS v.4.7.2 allows a remote attacker to execute arbitrary code via basictitle parameter...
CVE-2020-20913
SQL Injection vulnerability found in Ming-Soft MCMS v.4.7.2 allows a remote attacker to execute arbitrary code via basictitle parameter...
Sql injection
SQL Injection vulnerability found in Ming-Soft MCMS v.4.7.2 allows a remote attacker to execute arbitrary code via basictitle parameter...
CVE-2020-20913
SQL Injection vulnerability found in Ming-Soft MCMS v.4.7.2 allows a remote attacker to execute arbitrary code via basictitle parameter...
CVE-2020-20913
SQL Injection vulnerability found in Ming-Soft MCMS v.4.7.2 allows a remote attacker to execute arbitrary code via basictitle parameter...
CVE-2020-20913
CVE-2020-20913 describes a SQL Injection in Ming-Soft MCMS v4.7.2 where the basic_title parameter can be manipulated to run arbitrary SQL, potentially enabling remote code execution. The underlying issue is insufficient input validation of the basic_title parameter, allowing attacker-controlled S...
GHSA-2PMW-CVC7-FRVH SQL injection in MCMS
A problem was found in ming-soft MCMS v5.1. There is a sql injection vulnerability in /ms/cms/content/list.do...
CVE-2021-44868
A problem was found in ming-soft MCMS v5.1. There is a sql injection vulnerability in /ms/cms/content/list.do...
Sql injection
A problem was found in ming-soft MCMS v5.1. There is a sql injection vulnerability in /ms/cms/content/list.do...
CVE-2021-44868
The vulnerability CVE-2021-44868 affects Ming-soft MCMS v5.1. A SQL injection flaw exists in the /ms/cms/content/list.do endpoint, enabling potentially unauthorized access to backend data. Documented under CVSS metrics, the issue has a CVSS v3.1 base score of 9.8 (CRITICAL) with NETWORK attack ve...
GHSA-H3HW-G4HM-7GR4 SQL injection without credentials in ming-soft MCMS
An issue was discovered in ming-soft MCMS v5.0, where a malicious user can exploit SQL injection without logging in through /mcms/view.do...
SQL injection without credentials in ming-soft MCMS
An issue was discovered in ming-soft MCMS v5.0, where a malicious user can exploit SQL injection without logging in through /mcms/view.do...
Ming-Soft MCMS SQL Injection (CVE-2020-23262)
An SQL injection vulnerability exists in Ming-Soft MCMS. Successful exploitation of this vulnerability would allow a remote attacker to execute arbitrary SQL commands on the affected system...