phpwcms file upload vulnerability (CNVD-2023-09606)

phpwcms is an open source web content management system. It is fast, easy to install and can run on any standard web server platform that supports PHP/MySQL. A file upload vulnerability exists in phpwcms version 1.9.25. A remote attacker can exploit this vulnerability to execute arbitrary code by...

phpwcms directory traversal vulnerability

phpwcms is an open source web content management system. It is fast, easy to install and can run on any standard web server platform that supports PHP/MySQL. A directory traversal vulnerability exists in phpwcms version 1.9.25. A remote attacker can exploit this vulnerability to delete arbitrary...

CVE-2021-36426

File Upload vulnerability in phpwcms 1.9.25 allows remote attackers to run arbitrary code via crafted file upload to include/inclib/general.inc.php...

CVE-2021-36424

An issue discovered in phpwcms 1.9.25 allows remote attackers to run arbitrary code via DB user field during installation...

CVE-2021-36426

File Upload vulnerability in phpwcms 1.9.25 allows remote attackers to run arbitrary code via crafted file upload to include/inclib/general.inc.php...

CVE-2021-36424

An issue discovered in phpwcms 1.9.25 allows remote attackers to run arbitrary code via DB user field during installation...

Unrestricted file upload

File Upload vulnerability in phpwcms 1.9.25 allows remote attackers to run arbitrary code via crafted file upload to include/inclib/general.inc.php...

Information disclosure

An issue discovered in phpwcms 1.9.25 allows remote attackers to run arbitrary code via DB user field during installation...

PT-2023-12269 · Phpcms · Phpcms

Name of the Vulnerable Software and Affected Versions: phpwcms version 1.9.25 Description: The issue allows remote attackers to run arbitrary code via a crafted file upload to the "include/inc lib/general.inc.php" endpoint. Recommendations: For phpwcms version 1.9.25, update to a newer version th...

CVE-2021-36426

File Upload vulnerability in phpwcms 1.9.25 allows remote attackers to run arbitrary code via crafted file upload to include/inclib/general.inc.php...

PT-2023-12267 · Phpcms · Phpcms

Name of the Vulnerable Software and Affected Versions: phpwcms version 1.9.25 Description: An issue in phpwcms allows remote attackers to run arbitrary code via the DB user field during installation. Recommendations: For phpwcms version 1.9.25, at the moment, there is no information about a newer...

CVE-2021-36426

File Upload vulnerability in phpwcms 1.9.25 allows remote attackers to run arbitrary code via crafted file upload to include/inclib/general.inc.php...

CVE-2021-36424

CVE-2021-36424 affects phpwcms 1.9.25 and allows remote attackers to execute arbitrary code via the DB user field during installation. This is documented across multiple sources (NVD, Red Hat, OSV, CNNVD, CVE listing, PT Security) with no publicly available fix version indicated in the provided m...

CVE-2021-36424

An issue discovered in phpwcms 1.9.25 allows remote attackers to run arbitrary code via DB user field during installation...

CVE-2021-36426

CVE-2021-36426 affects phpwcms 1.9.25, where a crafted file upload to include/inc_lib/general.inc.php enables remote code execution. The vulnerability is described consistently across multiple sources as a File Upload vulnerability that lets an attacker run arbitrary code, with high impact (C/H I...

CVE-2021-36424

An issue discovered in phpwcms 1.9.25 allows remote attackers to run arbitrary code via DB user field during installation...

phpwcms 路径遍历漏洞

phpwcms is an open source web content management system. It is fast, easy to install and can run on any standard web server platform that supports PHP/MySQL. A directory traversal vulnerability exists in phpwcms version 1.9.25. A remote attacker can exploit this vulnerability to delete arbitrary...

phpwcms 代码问题漏洞

phpwcms is an open source web content management system. It is fast, easy to install and can run on any standard web server platform that supports PHP/MySQL. A file upload vulnerability exists in phpwcms version 1.9.25. A remote attacker can exploit this vulnerability to execute arbitrary code by...

phpwcms 代码注入漏洞

phpwcms is an open source web content management system. It is fast, easy to install and runs on any standard web server platform that supports PHP/MySQL. A security vulnerability exists in phpwcms version 1.9.25, which stems from a vulnerability that allows remote attackers to run arbitrary code...

phpwcms sql injection vulnerability

phpwcms is a website management system that follows the GNU open source protocol and utilizes PHP+MYSQL architecture for development. A SQL injection vulnerability exists in versions of Phpwcms before 1.9.26. An attacker can exploit this vulnerability to perform SQL injection and steal data, etc...