Lucene search
K

30 matches found

CNVD
CNVD
added 2022/04/07 12:0 a.m.17 views

PHPCMS SQL Injection Vulnerability (CNVD-2022-43217)

PHPCMS is a web content management system based on PHP and Mysql architecture. The system includes modules for news, images, downloads, information, products, etc. A security vulnerability exists in PHPCMS v1.0, which stems from the category parameter in categorymenu.php. No detailed vulnerabilit...

9.8CVSS2.4AI score0.01414EPSS
Exploits1References1
CNVD
CNVD
added 2022/02/21 12:0 a.m.11 views

Command Execution Vulnerability in BossCMS of Wenzhou Huyin Information Technology Co. Ltd (CNVD-2022-20212)

BossCMS is a content management system based on self-developed PHP framework MySQL architecture developed by Wenzhou Huyin Information Technology Co. A command execution vulnerability exists in BossCMS, which can be exploited by attackers to gain server privileges...

7.5AI score
Exploits0
CNVD
CNVD
added 2022/02/18 12:0 a.m.14 views

Arbitrary File Deletion Vulnerability in BossCMS of Wenzhou Huanxin Information Technology Company Limited (CNVD-2022-21724)

BossCMS is a content management system based on self-developed PHP framework MySQL architecture developed by Wenzhou Huyin Information Technology Co. BossCMS has an arbitrary file deletion vulnerability, which can be exploited to delete any file on the server...

7.2AI score
Exploits0
CNVD
CNVD
added 2022/02/18 12:0 a.m.20 views

XSS Vulnerability in BossCMS of Wenzhou Huyin Information Technology Co. Ltd (CNVD-2022-21727)

BossCMS is a content management system based on self-developed PHP framework MySQL architecture developed by Wenzhou Huyin Information Technology Co. There is an XSS vulnerability in BossCMS, which can be exploited by attackers to obtain sensitive information such as user cookies...

5.8AI score
Exploits0
CNVD
CNVD
added 2022/02/18 12:0 a.m.15 views

Command Execution Vulnerability in BossCMS of Wenzhou Huyin Information Technology Co.

BossCMS is a content management system based on self-developed PHP framework MySQL architecture developed by Wenzhou Huyin Information Technology Co. A command execution vulnerability exists in BossCMS, which can be exploited to gain server privileges...

7.5AI score
Exploits0
CNVD
CNVD
added 2022/02/16 12:0 a.m.11 views

XSS Vulnerability in BossCMS of Wenzhou Huyin Information Technology Co.

BossCMS is a content management system based on self-developed PHP framework MySQL architecture developed by Wenzhou Huyin Information Technology Co. There is an XSS vulnerability in BossCMS, which can be exploited by attackers to obtain sensitive information such as user cookies...

5.8AI score
Exploits0
CNVD
CNVD
added 2021/12/29 12:0 a.m.10 views

Unauthorized Access Vulnerability in BossCMS

BossCMS is a content management system based on self-developed PHP framework MySQL architecture developed by Wenzhou Huyin Information Technology Co. An unauthorized access vulnerability exists in BossCMS, which can be exploited by attackers to obtain sensitive information...

6.8AI score
Exploits0
CNVD
CNVD
added 2021/12/29 12:0 a.m.12 views

Arbitrary File Upload Vulnerability in BossCMS

BossCMS is a content management system based on self-developed PHP framework MySQL architecture developed by Wenzhou Huyin Information Technology Co. BossCMS has an arbitrary file upload vulnerability that can be exploited by attackers to gain control of the server...

7.5AI score
Exploits0
CNVD
CNVD
added 2021/10/11 12:0 a.m.8 views

Command Execution Vulnerability in Cruising Cloud Light Forum System

Cruise Cloud Light Forum System is Java+MySQL architecture, adaptive to cell phones and computers and so on. A command execution vulnerability exists in the Patrol Cloud Light Forum system, which can be exploited by attackers to gain server control privileges...

7.5AI score
Exploits0
CNVD
CNVD
added 2021/06/28 12:0 a.m.13 views

BlueCMS suffers from a command execution vulnerability (CNVD-2021-48546)

BlueCMS is a portal system applied to local classified information, the development language architecture is php mysql architecture. BlueCMS has a command execution vulnerability that can be exploited by an attacker to gain control of the server...

7.4AI score
Exploits0
CNVD
CNVD
added 2021/06/28 12:0 a.m.16 views

BlueCMS suffers from a command execution vulnerability (CNVD-2021-48545)

BlueCMS is a portal system applied to local classified information, the development language architecture is php mysql architecture. BlueCMS has a command execution vulnerability that can be exploited by an attacker to gain control of the server...

7.4AI score
Exploits0
CNVD
CNVD
added 2021/06/28 12:0 a.m.13 views

BlueCMS suffers from SQL injection vulnerability (CNVD-2021-48548)

BlueCMS is a portal system applied to local classified information, the development language architecture is php mysql architecture. BlueCMS has a SQL injection vulnerability, which can be exploited by attackers to obtain sensitive database information...

7.6AI score
Exploits0
CNVD
CNVD
added 2021/06/04 12:0 a.m.8 views

YzmCMS Cross-Site Scripting Vulnerability (CNVD-2021-40495)

YzmCMS is a lightweight open source content management system based on PHP+Mysql architecture developed by Yuan Zhimeng alone. YzmCMS 5.8 version of the /admin/systemmanage/userconfigedit.html page there is a cross-site scripting vulnerability, an attacker can use the vulnerability to inject...

5.4CVSS6.1AI score0.00503EPSS
Exploits1References1
CNVD
CNVD
added 2021/06/03 12:0 a.m.4 views

SQL Injection Vulnerability in CmsEasy of Siping Jiuzhou Yitong Technology Co. Ltd (CNVD-2021-40740)

CmsEasy is a web content management system based on PHP Mysql architecture and a PHP development platform. CmsEasy has a SQL injection vulnerability that can be exploited by attackers to obtain sensitive database information...

7.8AI score
Exploits0
CNVD
CNVD
added 2021/05/26 12:0 a.m.2 views

CmsEasy suffers from SQL injection vulnerability (CNVD-2021-40144)

CmsEasy is a website content management system based on PHP+Mysql architecture and a PHP development platform. CmsEasy suffers from a SQL injection vulnerability, which can be exploited by attackers to obtain sensitive database information...

7.8AI score
Exploits0
CNVD
CNVD
added 2021/05/25 12:0 a.m.10 views

MetInfo File Modification Vulnerability

MetInfo adopts PHP+Mysql architecture, it is a cms building system which is very friendly to SEO, fully functional, supports multi-language, responsive display, and extremely suitable for enterprise and company website construction. A file modification vulnerability exists in MetInfo 7.0 beta. An...

9.1CVSS6.7AI score0.02201EPSS
Exploits1References1
CNVD
CNVD
added 2021/05/11 12:0 a.m.3 views

YzmCMS Cross-Site Scripting Vulnerability (CNVD-2021-34497)

YzmCMS is a lightweight open source content management system based on PHP+Mysql architecture developed by Yuan Zhimeng alone. A stored cross-site scripting vulnerability exists in the common/static/plugin/ueditor/1.4.3.3/php/controller.php action parameter in YzmCMS version 5.6. The vulnerabilit...

5.4CVSS5.7AI score0.00735EPSS
Exploits1References1
CNVD
CNVD
added 2021/04/26 12:0 a.m.3 views

Command Execution Vulnerability in CmsEasy (CNVD-2021-34045)

CmsEasy is a website content management system based on PHP+Mysql architecture and a PHP development platform. CmsEasy suffers from a command execution vulnerability that can be exploited by attackers to gain control of the server...

7.7AI score
Exploits0
CNVD
CNVD
added 2021/03/07 12:0 a.m.4 views

BlueCMS v1.6 sp1 Has Arbitrary File Deletion Vulnerability

bluecms is an application for local classifieds portal system , the development language architecture is php + mysql architecture. BlueCMS v1.6 sp1 there are arbitrary file deletion vulnerability, attackers can use the vulnerability to achieve arbitrary file deletion...

7.1AI score
Exploits0
CNVD
CNVD
added 2021/03/04 12:0 a.m.2 views

SeaCMS suffers from SQL injection vulnerability (CNVD-2021-17447)

SeaCMS is a web content management system based on PHP MYSQL architecture and can run across platforms. SeaCMS has a SQL injection vulnerability that can be exploited by attackers to obtain sensitive database information...

7.8AI score
Exploits0
Rows per page
Query Builder