4 matches found
Emlog Pro License Issues Vulnerability
emlog is a PHP and MySQL based CMS builder for emlog personal developers. An authorization issue vulnerability exists in Emlog Pro version 2.3.4, which stems from incorrect authentication of the parameter AuthCookie of the component Cookie Handler. An attacker can exploit this vulnerability to...
SongCMS suffers from SQL injection vulnerability (CNVD-2021-26004)
SongCMS is a PHP MySQL, ASP Access/SQL Server based development, enterprise-oriented, multi-language support, free, open source CMS to help business users to quickly build and deploy enterprise-level portals. SongCMS has a SQL injection vulnerability, which can be exploited by attackers to obtain...
Command Execution Vulnerability in songcms Backend
SongCMS is a PHP MySQL, ASP Access/SQL Server based development, enterprise-oriented, multi-language support, free, open source CMS to help business users to quickly build and deploy enterprise-level portals. A command execution vulnerability exists in the backend of songcms. An attacker can...
AKCMS Cross-Site Request Forgery Vulnerability (CNVD-2018-14262)
AKCMS is a lightweight content management system CMS based on PHP and MySQL. A cross-site request forgery vulnerability exists in AKCMS version 6.1. An attacker can exploit this vulnerability to add an administrator account with the help of...