CVE-2023-5294

A vulnerability has been found in ECshop 4.1.1 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /admin/order.php. The manipulation of the argument goodsid leads to sql injection. The attack can be launched remotely. The exploit has been disclosed ...

Wuzhi WUZHI CMS SQL注入漏洞

Wuzhi WUZHI CMS is a PHP and MySQL based open source content management system CMS from Wuzhi. Wuzhi CMS suffers from a SQL injection vulnerability that originates from. Wuzhi CMS v4.1.0 suffers from a SQL injection vulnerability via the KeyValue parameter in coreframe app order admin index.php...

CVE-2021-40670

SQL Injection vulnerability exists in Wuzhi CMS 4.1.0 via the keywords iparameter under the /coreframe/app/order/admin/card.php file...

Sql injection

SQL Injection vulnerability exists in Wuzhi CMS 4.1.0 via the keywords iparameter under the /coreframe/app/order/admin/card.php file...

Wuzhi WUZHI CMS SQL注入漏洞

WUZHI CMS Five Fingers CMS is a high-performance open source content management system that supports the LNAMP architecture, suitable for portals, corporate websites, mobile sites, microsoft promotion. WUZHI CMS version 4.1.0 has a SQL injection vulnerability. The attacker can use the keywords...

Sql injection

SQL Injection in Wuzhi CMS v4.1.0 allows remote attackers to obtain sensitive information via the 'flag' parameter in the component '/coreframe/app/order/admin/index.php'...

CVE-2020-18877

SQL Injection in Wuzhi CMS v4.1.0 allows remote attackers to obtain sensitive information via the 'flag' parameter in the component '/coreframe/app/order/admin/index.php'...

Wuzhi WUZHI CMS SQL注入漏洞

WUZHI CMS is a PHP and MySQL based open source content management system CMS from Wuzhi. Wuzhi CMS has a SQL injection vulnerability in v4.1.0, which originates from a flag in the product /coreframe/app/order/admin/index.php page that fails to properly filter the special characters of the input...