6 matches found
Sql injection
SQL injection vulnerability in Pragyan CMS 3.0...
CVE-2015-4627
Summary: CVE-2015-4627 corresponds to a SQL injection vulnerability in Pragyan CMS 3.0. The connected CNVD entry describes a remote attacker exploiting SQL injection to execute arbitrary SQL commands. There is no explicit information on affected modules, versions beyond 3.0, or the root cause det...
Sql injection
SQL injection vulnerability in userprofile.lib.php in Pragyan CMS 3.0 allows remote attackers to execute arbitrary SQL commands via the user parameter to the default URI...
CVE-2015-1471
Pragyan CMS is affected by an SQL injection in userprofile.lib.php (Pragyan CMS 3.0). The vulnerability allows remote attackers to execute arbitrary SQL commands via the user parameter to the default URI. The issue is confirmed across multiple sources (NVD entry CVE-2015-1471 and OpenVAS probe), ...
CVE-2012-6500
Directory traversal vulnerability in download.lib.php in Pragyan CMS 3.0 and earlier allows remote attackers to read arbitrary files via a .. dot dot in the fileget parameter in a profile action to index.php...
Pragyan CMS 3.0 Remote File Inclusion
In The Name Of GOD ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ + + + Pragyan CMS 3.0 Remote File Inclusion Vulnerability + + + + Discovered by Cru3l.b0y + + + + + ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ + Exploit Title: Pragyan CMS 3.0...