20 matches found
EUVD-2021-23028
Malware in sbrugna...
EUVD-2019-2091
Malware in sbrugna...
EUVD-2004-1199
Malware in sbrugna...
EUVD-2020-14964
Malware in sbrugna...
EUVD-2004-1200
Malware in sbrugna...
EUVD-2020-14966
Malware in sbrugna...
CVE-2020-22201
phpCMS 2008 sp4 allowas remote malicious users to execute arbitrary php commands via the pagesize parameter to yp/product.php...
phpcms command injection vulnerability
PHPCMS is a web content management system based on PHP and Mysql architecture. The system includes modules such as news, pictures, downloads, information and products. A command injection vulnerability exists in phpCMS 2008 sp4. An attacker can exploit this vulnerability to execute arbitrary php...
PT-2021-10745 · Phpcms · Phpcms
Name of the Vulnerable Software and Affected Versions: phpCMS 2008 sp4 Description: The issue allows remote malicious users to execute arbitrary php commands. This is achieved via the pagesize parameter to the "yp/product.php" endpoint. Recommendations: For phpCMS 2008 sp4, consider restricting...
PHPCMS suffers from a file upload vulnerability (CNVD-2019-30562)
PHPCMS is a web content management system based on PHP and Mysql architecture. A file upload vulnerability exists in PHPCMS, which can be exploited by attackers to gain control of a web server...
CVE-2018-19127
A code injection vulnerability in /type.php in PHPCMS 2008 allows attackers to write arbitrary content to a website cache file with a controllable filename, leading to arbitrary code execution. The PHP code is sent via the template parameter, and is written to a data/cachetemplate/.tpl.php file...
Phpcms V9. 6. 0 any file write getshell vulnerability analysis-vulnerability warning-the black bar safety net
1 Introduction: It is said to be one in the underground has been around for half a 0day, which has recently been broke to, in the membership registration page, that this vulnerability without the need to login you can use, or more powerful. 2 vulnerability analysis: Follow up on the registration...
PHPCMS v9.5.10 suffers from a design vulnerability
PHPCMS is a website management software. The software adopts modular development and supports a variety of classification methods, using it can easily realize the design, development and maintenance of personalized websites. A design vulnerability exists in PHPCMS v9.5.10, which allows an attacke...
phpcms v9 目录穿越(遍历)漏洞
No description provided by source...
phpCMS 1.1.7 include/class.parser_phpcms.php PHPCMS_INCLUDEPATH Parameter Remote File Inclusion
No description provided by source. source: http://www.securityfocus.com/bid/21768/info phpCMS is prone to multiple remote file-include vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues may allow an attacker to compromise the application and the...
PHPCMS 9 plugin.php 本地文件包含漏洞
No description provided by source...
CVE-2004-1202
Cross-site scripting XSS vulnerability in parser.php in phpCMS 1.2.1 and earlier, with non-stealth and debug modes enabled, allows remote attackers to inject arbitrary web script or HTML via the file parameter...
CVE-2004-1203
parser.php in phpCMS 1.2.1 and earlier, with non-stealth and debug modes enabled, allows remote attackers to gain sensitive information via an invalid file parameter, which reveals the web server's installation path...
phpCMS 1.11.2 - Cross-Site Scripting
phpCMS 1.11.2 - Cross-Site Scripting source: https://www.securityfocus.com/bid/11765/info It is reported that phpCMS is susceptible to a cross-site scripting vulnerability. This issue is due to a failure of the application to properly sanitize user-supplied input prior to including it in...
phpCMS 1.1/1.2 - Cross-Site Scripting
source: https://www.securityfocus.com/bid/11765/info It is reported that phpCMS is susceptible to a cross-site scripting vulnerability. This issue is due to a failure of the application to properly sanitize user-supplied input prior to including it in dynamically generated Web pages. It is report...