11 matches found
EUVD-2020-8590
Malware in sbrugna...
EUVD-2020-14257
Malware in sbrugna...
EUVD-2023-37757
Malicious code in bioql PyPI...
EUVD-2022-33702
Malicious code in bioql PyPI...
CVE-2020-16629
PhpOK 5.4.137 contains a SQL injection vulnerability that can inject an attachment data through SQL, and then call the attachment replacement function through api.php to write a PHP file to the target path...
CVE-2024-38953
The CVE-2024-38953 entry maps to phpok 6.4.003 with a Cross Site Scripting (XSS) vulnerability in the ok_f() method of framework/api/upload_control.php. Affected component: phpok core, file path framework/api/upload_control.php. Root cause and explicit impact are described as XSS, but the connect...
CVE-2020-21486
SQL injection vulnerability in PHPOK v.5.4. allows a remote attacker to obtain sensitive information via the userlist function in framerwork/phpokcall.php file...
CVE-2020-21486
SQL injection vulnerability in PHPOK v.5.4. allows a remote attacker to obtain sensitive information via the userlist function in framerwork/phpokcall.php file...
PHPOK version 4.9.015 suffers from information leakage vulnerability
PHPOK enterprise station system is a set of enterprise station CMS system developed in PHP + MYSQL language. PHPOK version 4.9.015 suffers from an information leakage vulnerability, which originates from the program saving SESSION in the web directory, which can be exploited by attackers to obtai...
CVE-2018-16142
PHPOK 4.8.278 has a Reflected XSS vulnerability in framework/www/logincontrol.php via the back parameter to the okf function...
Cross site scripting
PHPOK 4.8.278 has a Reflected XSS vulnerability in framework/www/logincontrol.php via the back parameter to the okf function...