5 matches found
CVE-2017-15081
In PHPSUGAR PHP Melody CMS 2.6.1, SQL Injection exists via the playlist parameter to playlists.php...
Sql injection
In PHPSUGAR PHP Melody CMS 2.6.1, SQL Injection exists via the playlist parameter to playlists.php...
CVE-2017-15648
In PHPSUGAR PHP Melody before 2.7.3, pagemanager.php has XSS via the pagetitle parameter...
CVE-2017-15648
In PHPSUGAR PHP Melody before 2.7.3, pagemanager.php has XSS via the pagetitle parameter...
CVE-2017-15579
In PHPSUGAR PHP Melody before 2.7.3, SQL Injection exists via an aapagesperpage cookie in a playlist action to watch.php...