257 matches found
File Upload Vulnerability in PHPOK of Shenzhen Kunshuo Technology Co.
PHPOK is a website building content management system to achieve customized open source free website building cms system. Ltd. PHPOK file upload vulnerability, attackers can use the vulnerability to obtain server privileges...
File Upload Vulnerability in PHPOK of Shenzhen Kunshuo Technology Co., Ltd (CNVD-2021-39278)
PHPOK is a website building content management system to achieve customized open source free website building cms system. PHPOK has a file upload vulnerability that can be exploited by attackers to execute arbitrary commands...
PHPOK Cross-Site Request Forgery Vulnerability
phpok is a set of enterprise website system developed by Shenzhen锟絪 technology limited company using PHP+MYSQL language. A cross-site request forgery vulnerability exists in PHPOK version 5.2.060. An attacker can exploit this vulnerability by executing arbitrary code via admin.php?c=admin&f=save...
CVE-2020-19199
A Cross Site Request Forgery CSRF vulnerability exists in PHPOK 5.2.060 via admin.php?c=admin&f=save, which could let a remote malicious user execute arbitrary code...
CVE-2020-19199
A Cross Site Request Forgery CSRF vulnerability exists in PHPOK 5.2.060 via admin.php?c=admin&f=save, which could let a remote malicious user execute arbitrary code...
Cross site request forgery (csrf)
A Cross Site Request Forgery CSRF vulnerability exists in PHPOK 5.2.060 via admin.php?c=admin&f=save, which could let a remote malicious user execute arbitrary code...
CVE-2020-19199
A Cross Site Request Forgery CSRF vulnerability exists in PHPOK 5.2.060 via admin.php?c=admin&f=save, which could let a remote malicious user execute arbitrary code...
CVE-2020-19199
PHPOK 5.2.060 is affected by a CSRF vulnerability in admin.php?c=admin&f=save that could let a remote attacker execute arbitrary code. Affected component is PHPOK’s admin save endpoint; root cause is a CSRF flaw enabling code execution. Multiple sources (NVD entry CVE-2020-19199 and partner discl...
PHPOK 跨站请求伪造漏洞
phpok is a set of enterprise website system developed by Shenzhen锟絪 technology limited company using PHP+MYSQL language. A cross-site request forgery vulnerability exists in PHPOK version 5.2.060. An attacker can exploit this vulnerability by executing arbitrary code via admin.php?c=admin&f=save...
PHPOK suffers from a command execution vulnerability (CNVD-2021-35553)
PHPOK is a website building content management system to achieve customized open source free website building cms system. PHPOK has a command execution vulnerability that can be exploited by attackers to execute commands...
PHPOK suffers from SQL injection vulnerability
PHPOK is a set of enterprise website system developed in PHP + MYSQL language. PHPOK suffers from a SQL injection vulnerability. An attacker can exploit this vulnerability to obtain sensitive information...
File upload vulnerability in PHPOK backend
PHPOK is a set of enterprise website system developed in PHP + MYSQL language. A file upload vulnerability exists in the PHPOK backend. An attacker can exploit the vulnerability to upload webshell and gain server privileges...
PhpOK SQL Injection Vulnerability
phpok is a set of enterprise website system developed by Shenzhen锟絪 technology limited company using PHP+MYSQL language. PhpOK 5.4.137 suffers from a SQL injection vulnerability. An attacker can exploit this vulnerability by injecting attachment data via SQL and then calling the attachment...
CVE-2020-16629
PhpOK 5.4.137 contains a SQL injection vulnerability that can inject an attachment data through SQL, and then call the attachment replacement function through api.php to write a PHP file to the target path...
CVE-2020-16629
PhpOK 5.4.137 contains a SQL injection vulnerability that can inject an attachment data through SQL, and then call the attachment replacement function through api.php to write a PHP file to the target path...
Sql injection
PhpOK 5.4.137 contains a SQL injection vulnerability that can inject an attachment data through SQL, and then call the attachment replacement function through api.php to write a PHP file to the target path...
CVE-2020-16629
PhpOK 5.4.137 contains a SQL injection vulnerability that can inject an attachment data through SQL, and then call the attachment replacement function through api.php to write a PHP file to the target path...
CVE-2020-16629
CVE-2020-16629 affects PhpOK 5.4.137. A SQL injection vulnerability lets an attacker inject attachment data via SQL and then call the attachment replacement function via api.php to write a PHP file to a target path. The issue is documented across multiple sources (CNVD, NVD, Red Hat, CVE lists) w...
PHPOK SQL注入漏洞
phpok is a set of enterprise website system developed by Shenzhen锟絪 technology limited company using PHP+MYSQL language. PhpOK 5.4.137 suffers from a SQL injection vulnerability. An attacker can exploit this vulnerability by injecting attachment data via SQL and then calling the attachment...
Command Execution Vulnerability in phpok
PHPOK is a website building content management system to achieve customized open source free website building cms system. phpok there is a command execution vulnerability , an attacker can exploit the vulnerability to execute arbitrary commands...