CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

9 matches found

OSV•added 2021/06/16 5:15 p.m.•0 views

CVE-2020-22199

SQL Injection vulnerability in phpCMS 2007 SP6 build 0805 via the diggmod parameter to diggadd.php...

9.8CVSS5.8AI score

Exploits0References1

NVD•added 2021/06/16 5:15 p.m.•9 views

CVE-2020-22199

SQL Injection vulnerability in phpCMS 2007 SP6 build 0805 via the diggmod parameter to diggadd.php...

9.8CVSS0.00264EPSS

Exploits1References1

CVE•added 2021/06/16 4:19 p.m.•35 views

CVE-2020-22199

CVE-2020-22199 is a SQL injection vulnerability in phpCMS 2007 SP6 build 0805, exploitable via the digg_mod parameter to digg_add.php. Affected component is phpCMS’s PHP/MySQL-based web CMS; root cause is insecure handling of the digg_mod parameter leading to SQL statements being injected. CVSS m...

9.8CVSS9.7AI score0.00264EPSS

Exploits1References1Affected Software1

Cvelist•added 2021/06/16 4:19 p.m.•9 views

CVE-2020-22199

SQL Injection vulnerability in phpCMS 2007 SP6 build 0805 via the diggmod parameter to diggadd.php...

9.9AI score0.00264EPSS

Exploits1References1

seebug.org•added 2013/06/07 12:0 a.m.•13 views

phpcms 2007 onunload.inc.php update SQL注入漏洞

code!--?php defined'INPHPCMS' or exit'Access Denied'; $serverid ? 1 : showmessage$LANG'illegaloperation'; $db---query"UPDATE ".TABLEMOVIESERVER." SET num = num-1 WHERE serverid = $serverid AND num 0 "; 2 ?/code $serverid没有进行任何过滤也没有用单引号括起来，所以无视gpc。核心文件include\common.inc.php里大概80左右变量覆盖漏洞。...

7AI score

Exploits0

myhack58•added 2011/07/25 12:0 a.m.•12 views

phpcms2008-0day & phpcms 2 0 0 7 GBK version 0day injection scan script-vulnerability warning-the black bar safety net

Affected program: phpcms2008 gbk Vulnerability file: ask/searchajax.php code: ? php require './ include/common.inc.php'; requireonce MODROOT.'include/ask.class.php'; $ask = new ask; header'Content-type: text/html; charset=utf-8'; ifvia strtolowerCHARSET != 'utf-8' $q = iconvCHARSET, 'utf-8', $q;...

Exploits0

myhack58•added 2010/06/24 12:0 a.m.•18 views

phpcms 2 0 0 7 site management system Member. php page SQL injection vulnerability-vulnerability warning-the black bar safety net

Affected version: phpcms 2 0 0 7 GBK Vulnerability description: In the member/member. php line 4, The code is as follows: 1. .............. 2. $m = $db-getone SELECT FROM . TABLEMEMBER. m , . TABLEMEMBERINFO. i WHERE m. userid=i. userid AND m. username= 3. $username 4. , CACHE ,8 6 4 0 0; 5...

7.3AI score

Exploits0

seebug.org•added 2008/09/16 12:0 a.m.•9 views

PHPCMS2007 SP6 vote模块SQL注射漏洞

vote/vote.php // 22行 $optionids = isarray$op ? implode',',$op : $op; ... $db-query"UPDATE ".TABLEVOTEOPTION." SET number = number+1 WHERE optionid IN $optionids "; PHPCMS2007 SP6 暂无 !/usr/bin/php ?php printr' +---------------------------------------------------------------------------+ Phpcms 200...

7.1AI score

Exploits0

seebug.org•added 2008/07/12 12:0 a.m.•15 views

Phpcms 2007 common.inc.php远程文件包含漏洞

该cms的核心配置文件/include/common.inc.php有缺陷 -------------------------------------------- //23行开始 @extract$POST, EXTROVERWRITE; @extract$GET, EXTROVERWRITE; unset$POST, $GET; ------------------------------------------------ 这里extract函数会导致变量覆盖，可能引发一系列的问题...

7.1AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by