400 matches found
CVE-2023-51052
S-CMS v5.0 was discovered to contain a SQL injection vulnerability via the Aformauth parameter at /admin/ajax.php...
CVE-2023-51048
S-CMS v5.0 was discovered to contain a SQL injection vulnerability via the Anewsauth parameter at /admin/ajax.php...
CVE-2023-51049
S-CMS v5.0 was discovered to contain a SQL injection vulnerability via the Abbsauth parameter at /admin/ajax.php...
CVE-2023-51048
S-CMS v5.0 was discovered to contain a SQL injection vulnerability via the Anewsauth parameter at /admin/ajax.php...
CVE-2023-51048
S-CMS v5.0 was discovered to contain a SQL injection vulnerability via the Anewsauth parameter at /admin/ajax.php...
CVE-2023-51049
S-CMS v5.0 was discovered to contain a SQL injection vulnerability via the Abbsauth parameter at /admin/ajax.php...
Sql injection
S-CMS v5.0 was discovered to contain a SQL injection vulnerability via the Anewsauth parameter at /admin/ajax.php...
Sql injection
S-CMS v5.0 was discovered to contain a SQL injection vulnerability via the Abbsauth parameter at /admin/ajax.php...
Sql injection
S-CMS v5.0 was discovered to contain a SQL injection vulnerability via the Atextauth parameter at /admin/ajax.php...
Sql injection
S-CMS v5.0 was discovered to contain a SQL injection vulnerability via the Aproductauth parameter at /admin/ajax.php...
Sql injection
S-CMS v5.0 was discovered to contain a SQL injection vulnerability via the Aformauth parameter at /admin/ajax.php...
CVE-2023-51052
S-CMS v5.0 was discovered to contain a SQL injection vulnerability via the Aformauth parameter at /admin/ajax.php...
S-CMS Security Vulnerabilities
S-CMS is a PHP and MySQL based Content Management System CMS from S-CMS China. A security vulnerability exists in S-CMS v5.0, which originates from the discovery of an SQL injection vulnerability via the Abbsauth parameter in /admin/ajax.php...
CVE-2023-51050
Summary: CVE-2023-51050 affects S-CMS v5.0, with a SQL injection via the A_productauth parameter in /admin/ajax.php. The Red Hat, NVD, CVE listings, and PT Security entries corroborate the issue and its association with S-CMS 5.0. The PT-2023-31751 advisory notes there is no available fix/version...
CVE-2023-51052
S-CMS v5.0 was discovered to contain a SQL injection vulnerability via the Aformauth parameter at /admin/ajax.php...
CVE-2023-51049
S-CMS v5.0 was discovered to contain a SQL injection vulnerability via the Abbsauth parameter at /admin/ajax.php...
CVE-2023-51048
S-CMS v5.0 was discovered to contain a SQL injection vulnerability via the Anewsauth parameter at /admin/ajax.php...
CVE-2023-51051
S-CMS v5.0 contains a SQL injection vulnerability via the A_textauth parameter in /admin/ajax.php. CVSS v3.1 base score 9.8 (CRITICAL) with network access, no privileges, no user interaction. Affected component: A_textauth handling in /admin/ajax.php; impact on confidentiality, integrity, and ava...
CVE-2023-51049
CVE-2023-51049 : S-CMS v5.0 has a SQL injection vulnerability via the A_bbsauth parameter in /admin/ajax.php. This is a high-severity issue (CVSS v3.1: 9.8, CRITICAL) with network access, no authentication, no user interaction, and impacts to confidentiality, integrity, and availability. Root cau...
CVE-2023-51048
CVE-2023-51048 affects S-CMS v5.0 with a SQL injection via the A_newsauth parameter in /admin/ajax.php. Root cause: unsanitized input leading to SQL injection. Impact per sources: high confidentiality, integrity, and availability; attack vector is network with no authentication and no user intera...