Lucene search
K

77 matches found

CNNVD
CNNVD
added 2025/01/15 12:0 a.m.2 views

native-php-cms 安全漏洞

native-php-cms is a website builder system for FLi individual developers. A security vulnerability exists in version 1.0 of native-php-cms, which stems from a parameter id in the file /fladmin/articledodel.php that can lead to SQL injection...

8.8CVSS6.8AI score0.00555EPSS
Exploits1References1
CNNVD
CNNVD
added 2025/01/15 12:0 a.m.3 views

native-php-cms 安全漏洞

native-php-cms is a website builder system for FLi individual developers. A security vulnerability exists in native-php-cms version 1.0, which stems from a parameter id in the file /fladmin/catedit.php that can lead to SQL injection...

9.8CVSS6.8AI score0.00495EPSS
Exploits1References1
CNNVD
CNNVD
added 2025/01/15 12:0 a.m.2 views

native-php-cms 安全漏洞

native-php-cms is a website builder for FLi individual developers. A security vulnerability exists in native-php-cms version 1.0, which stems from a parameter cat in the file productlist.php that can cause SQL injection...

8.8CVSS6.9AI score0.00434EPSS
Exploits1References1
CNNVD
CNNVD
added 2025/01/15 12:0 a.m.3 views

native-php-cms 安全漏洞

native-php-cms is a website builder system for FLi individual developers. A security vulnerability exists in version 1.0 of native-php-cms, which stems from improper manipulation of the message/error parameter in the file /fladmin/jump.php, and is susceptible to cross-site scripting attacks...

5.3CVSS4.3AI score0.00319EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2025/01/15 12:0 a.m.3 views

PT-2025-3920 · Fanli2012 · Native-Php-Cms

Name of the Vulnerable Software and Affected Versions: Fanli2012 native-php-cms version 1.0 Description: A critical issue has been found in the processing of the file /fladmin/article dodel.php. The manipulation of the id argument leads to SQL injection. The attack may be initiated remotely. The...

8.8CVSS6.8AI score0.00555EPSS
Exploits1References10
Positive Technologies
Positive Technologies
added 2025/01/15 12:0 a.m.5 views

PT-2025-3918 · Unknown · Fanli2012 Native-Php-Cms

Name of the Vulnerable Software and Affected Versions: Fanli2012 native-php-cms version 1.0 Description: A critical vulnerability has been found in the product list.php file of Fanli2012 native-php-cms. The issue is related to the manipulation of the cat argument, which leads to SQL injection. Th...

8.8CVSS6.6AI score0.00434EPSS
Exploits1References10
CNNVD
CNNVD
added 2025/01/15 12:0 a.m.4 views

native-php-cms 安全漏洞

native-php-cms is a website builder system for FLi individual developers. A security vulnerability exists in version 1.0 of native-php-cms, which stems from improper handling in the file /fladmin/userrecoverpwd.php, which could lead to the use of default credentials...

7.5CVSS7.4AI score0.00604EPSS
Exploits1References1
CNNVD
CNNVD
added 2025/01/15 12:0 a.m.2 views

native-php-cms 安全漏洞

native-php-cms is a website builder system for FLi individual developers. A security vulnerability exists in version 1.0 of native-php-cms, which stems from the parameter info in the file /fladmin/sysconfigdoedit.php that can lead to cross-site scripting attacks...

6.1CVSS4.4AI score0.00314EPSS
Exploits1References1
CNNVD
CNNVD
added 2025/01/15 12:0 a.m.4 views

native-php-cms 安全漏洞

native-php-cms is a website builder system for FLi individual developers. A security vulnerability exists in version 1.0 of native-php-cms, which stems from a parameter id in the file /fladmin/catdodel.php that can lead to SQL injection...

9.8CVSS6.8AI score0.00577EPSS
Exploits1References1
CNNVD
CNNVD
added 2025/01/15 12:0 a.m.3 views

native-php-cms 安全漏洞

native-php-cms is a website builder system for FLi individual developers. A security vulnerability exists in version 1.0 of native-php-cms, which stems from a parameter id in the file /fladmin/friendlinkdodel.php that can lead to SQL injection...

8.8CVSS6.8AI score0.00434EPSS
Exploits1References1
NVD
NVD
added 2023/02/03 6:15 p.m.8 views

CVE-2021-36503

SQL injection vulnerability in native-php-cms 1.0 allows remote attackers to run arbitrary SQL commands via the cat parameter to /list.php file...

9.8CVSS9.8AI score0.00855EPSS
Exploits1References1
OSV
OSV
added 2023/02/03 6:15 p.m.3 views

CVE-2021-36503

SQL injection vulnerability in native-php-cms 1.0 allows remote attackers to run arbitrary SQL commands via the cat parameter to /list.php file...

9.8CVSS6AI score0.00855EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2023/02/03 12:0 a.m.5 views

CVE-2021-36503

SQL injection vulnerability in native-php-cms 1.0 allows remote attackers to run arbitrary SQL commands via the cat parameter to /list.php file...

9.8AI score0.00855EPSS
Exploits1References1
CVE
CVE
added 2023/02/03 12:0 a.m.52 views

CVE-2021-36503

CVE-2021-36503 is a SQL injection vulnerability affecting native-php-cms version 1.0. The issue allows remote attackers to execute arbitrary SQL commands by supplying crafted input to the cat parameter of the /list.php endpoint. The CVSS v3.1 base score is 9.8 (CRITICAL) with Network attack vecto...

9.8CVSS9.7AI score0.00855EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2023/02/03 12:0 a.m.41 views

CVE-2021-36503

SQL injection vulnerability in native-php-cms 1.0 allows remote attackers to run arbitrary SQL commands via the cat parameter to /list.php file...

10AI score0.00855EPSS
Exploits1References1
CNNVD
CNNVD
added 2023/02/03 12:0 a.m.5 views

native-php-cms SQL注入漏洞

native-php-cms is a website builder for FLi individual developers. A security vulnerability exists in version 1.0 of native-php-cms, which is caused by SQL injection and can be exploited by an attacker to run arbitrary SQL commands via the cat parameter in the /list.php file...

9.8CVSS8.8AI score0.00855EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2023/02/03 12:0 a.m.4 views

PT-2023-12281 · Unknown · Native-Php-Cms

Name of the Vulnerable Software and Affected Versions: native-php-cms version 1.0 Description: The issue allows remote attackers to execute arbitrary SQL commands. This is achieved by exploiting the cat parameter in the /list.php file, enabling attackers to inject malicious SQL code...

9.8CVSS9.8AI score0.00855EPSS
Exploits1References2
Rows per page
Query Builder