218 matches found
CVE-2022-45331
AeroCMS v0.0.1 was discovered to contain a SQL Injection vulnerability via the pid parameter at \post.php. This vulnerability allows attackers to access database information...
PT-2022-24051 · WordPress · Embedpress Plugin
Name of the Vulnerable Software and Affected Versions: EmbedPress Plugin affected versions not specified Description: A vulnerability has been found in the EmbedPress Plugin, affecting an unknown functionality of the file post.php of the component Shortcode Handler. This issue leads to cross-site...
Ed01-Cms SQL Injection Vulnerability (CNVD-2022-79912)
Ed01-Cms is a Cms project in the Udemy course. version 20180505 of ED01-CMS is vulnerable to a SQL injection vulnerability that stems from a lack of validation of externally entered SQL statements in post.php. An attacker could use this vulnerability to execute illegal SQL commands to steal...
CVE-2022-28524
ED01-CMS v20180505 was discovered to contain a SQL injection vulnerability via the component post.php...
Sql injection
ED01-CMS v20180505 was discovered to contain a SQL injection vulnerability via the component post.php...
CVE-2022-28524
ED01-CMS v20180505 contains a SQL injection in the component post.php due to lack of validation of externally entered SQL statements. This allows an attacker to execute arbitrary SQL commands on the database, potentially compromising data confidentiality, integrity, and availability. CVSS data fr...
CVE-2022-28524
ED01-CMS v20180505 was discovered to contain a SQL injection vulnerability via the component post.php...
Victor CMS 1.0 - 'post' SQL Injection
Exploit Title: Victor CMS 1.0 - 'post' SQL Injection Google Dork: N/A Date: 2020-05-09 Exploit Author: BKpatron Vendor Homepage: https://github.com/VictorAlagwu/CMSsite Software Link: https://github.com/VictorAlagwu/CMSsite/archive/master.zip Version: v1.0 Tested on: Win 10 CVE: N/A my website:...
Victor CMS 1.0 SQL Injection
Exploit Title: Victor CMS 1.0 - 'post' SQL Injection Google Dork: N/A Date: 2020-05-09 Exploit Author: BKpatron Vendor Homepage: https://github.com/VictorAlagwu/CMSsite Software Link: https://github.com/VictorAlagwu/CMSsite/archive/master.zip Version: v1.0 Tested on: Win 10 CVE: N/A my website:...
Victor CMS 1.0 - (post) SQL Injection Vulnerability
Exploit for php platform in category web applications Exploit Title: Victor CMS 1.0 - 'post' SQL Injection Exploit Author: BKpatron Vendor Homepage: https://github.com/VictorAlagwu/CMSsite Software Link: https://github.com/VictorAlagwu/CMSsite/archive/master.zip Version: v1.0 Tested on: Win 10 CV...
60CycleCMS - news.php SQL Injection
60CycleCMS - news.php SQL Injection Exploit Title: 60CycleCMS - 'news.php' Multiple vulnerability Google Dork: N/A Date: 2020-02-10 Exploit Author: Unkn0wn Vendor Homepage: http://davidvg.com/ Software Link: https://www.opensourcecms.com/60cyclecms Version: 2.5.2 Tested on: Ubuntu CVE : N/A...
Exploit for Missing Authentication for Critical Function in Getigniteup Igniteup
Wordpress IgniteUp plugin vulnerability Wordpress IgniteUp plu...
CVE-2019-17429
Adhouma CMS through 2019-10-09 has SQL Injection via the post.php pid parameter...
Sql injection
Adhouma CMS through 2019-10-09 has SQL Injection via the post.php pid parameter...
CVE-2019-17429
CVE-2019-17429 affects Adhouma CMS prior to or on 2019-10-09. The vulnerability is an SQL injection in the post.php p_id parameter, as described in the CVE entry and corroborated by Red Hat and NVD records. This flaw enables manipulation of database queries via the affected parameter, with potent...
CVE-2019-17429
Adhouma CMS through 2019-10-09 has SQL Injection via the post.php pid parameter...
Cross site request forgery (csrf)
The PageLines theme 1.1.4 for WordPress has wp-admin/admin-post.php?page=pagelines CSRF...
CVE-2019-14773
admin/includes/class.actions.snippet.php in the "Woody ad snippets" plugin through 2.2.5 for WordPress allows wp-admin/admin-post.php?action=close&post= deletion...
CMSsite 1.0 post.php SQL Injection
Exploit Title: CMSsite 1.0 - 'post' SQL Injection Exploit Author: Mr Winst0n Author E-mail: [email protected] Discovery Date: February 17, 2019 Vendor Homepage: https://github.com/VictorAlagwu/CMSsite Software Link : https://github.com/VictorAlagwu/CMSsite/archive/master.zip Tested Versio...
CMSsite 1.0 - post SQL Injection
CMSsite 1.0 - post SQL Injection Exploit Title: CMSsite 1.0 - 'post' SQL Injection Exploit Author: Mr Winst0n Author E-mail: [email protected] Discovery Date: February 17, 2019 Vendor Homepage: https://github.com/VictorAlagwu/CMSsite Software Link :...