400 matches found
Sql injection
A vulnerability, which was classified as critical, has been found in S-CMS up to 2.0build20220529-20231006. Affected by this issue is some unknown functionality of the file /member/ad.php?action=ad. The manipulation of the argument Atext/Aurl/Acontact leads to sql injection. The exploit has been...
CVE-2023-7191 S-CMS reg.php sql injection
A vulnerability, which was classified as critical, was found in S-CMS up to 2.0build20220529-20231006. This affects an unknown part of the file member/reg.php. The manipulation of the argument Mlogin/Memail leads to sql injection. The exploit has been disclosed to the public and may be used. The...
CVE-2023-7191 S-CMS reg.php sql injection
A vulnerability, which was classified as critical, was found in S-CMS up to 2.0build20220529-20231006. This affects an unknown part of the file member/reg.php. The manipulation of the argument Mlogin/Memail leads to sql injection. The exploit has been disclosed to the public and may be used. The...
CVE-2023-7191
CVE-2023-7191 : S-CMS (PHP/MySQL) up to version 2.0_build20220529-20231006 contains a SQL injection in the file component member/reg.php. The root cause is manipulation of the arguments M_login/M_email, enabling potentially arbitrary SQL execution. Multiple connected sources confirm the vulnerabi...
CVE-2023-7190 S-CMS sql injection
A vulnerability, which was classified as critical, has been found in S-CMS up to 2.0build20220529-20231006. Affected by this issue is some unknown functionality of the file /member/ad.php?action=ad. The manipulation of the argument Atext/Aurl/Acontact leads to sql injection. The exploit has been...
CVE-2023-7190
CVE-2023-7190 affects S-CMS prior to or including version 2.0_build20220529-20231006. The vulnerability arises from an SQL injection in the unknown function of /member/ad.php?action=ad, triggered by manipulating the A_text/A_url/A_contact parameters. Public exploitation has been disclosed. The ve...
CVE-2023-7189
A vulnerability classified as critical was found in S-CMS up to 2.0build20220529-20231006. Affected by this vulnerability is an unknown functionality of the file /s/index.php?action=statistics. The manipulation of the argument lid leads to sql injection. The exploit has been disclosed to the publ...
CVE-2023-7189
A vulnerability classified as critical was found in S-CMS up to 2.0build20220529-20231006. Affected by this vulnerability is an unknown functionality of the file /s/index.php?action=statistics. The manipulation of the argument lid leads to sql injection. The exploit has been disclosed to the publ...
Sql injection
A vulnerability classified as critical was found in S-CMS up to 2.0build20220529-20231006. Affected by this vulnerability is an unknown functionality of the file /s/index.php?action=statistics. The manipulation of the argument lid leads to sql injection. The exploit has been disclosed to the publ...
CVE-2023-7189 S-CMS sql injection
A vulnerability classified as critical was found in S-CMS up to 2.0build20220529-20231006. Affected by this vulnerability is an unknown functionality of the file /s/index.php?action=statistics. The manipulation of the argument lid leads to sql injection. The exploit has been disclosed to the publ...
CVE-2023-7189
CVE-2023-7189 affects S-CMS up to 2.0_build20220529-20231006. The vulnerability lies in an unknown function in /s/index.php?action=statistics where manipulating the lid argument enables SQL injection. The exploit has been disclosed publicly; vendor response was not provided in the documents. Expl...
S-CMS SQL Injection Vulnerability
S-CMS is a PHP and MySQL based Content Management System CMS from S-CMS China. A SQL injection vulnerability exists in S-CMS version 2.0build20220529-20231006 and earlier versions, which originates from a problem with the unknown function of /member/ad.php?action=ad...
PT-2023-32933 · S Cms · S-Cms
Name of the Vulnerable Software and Affected Versions: S-CMS versions up to 2.0 build20220529-20231006 Description: A critical vulnerability was found in S-CMS, affecting an unknown functionality of the file /s/index.php?action=statistics. The manipulation of the lid argument leads to SQL...
S-CMS SQL Injection Vulnerability
S-CMS is a PHP and MySQL based Content Management System CMS from S-CMS, China. A SQL injection vulnerability exists in S-CMS version 2.0build20220529-20231006 and earlier versions, which originates from a problem with an unknown function in /s/index.php?action=statistics...
S-CMS SQL Injection Vulnerability
S-CMS is a PHP and MySQL based Content Management System CMS from S-CMS China. A SQL injection vulnerability exists in S-CMS version 2.0build20220529-20231006 and earlier versions, which stems from a problem with an unknown function in member/reg.php...
CVE-2023-51050
S-CMS v5.0 was discovered to contain a SQL injection vulnerability via the Aproductauth parameter at /admin/ajax.php...
CVE-2023-51051
S-CMS v5.0 was discovered to contain a SQL injection vulnerability via the Atextauth parameter at /admin/ajax.php...
CVE-2023-51050
S-CMS v5.0 was discovered to contain a SQL injection vulnerability via the Aproductauth parameter at /admin/ajax.php...
CVE-2023-51052
S-CMS v5.0 was discovered to contain a SQL injection vulnerability via the Aformauth parameter at /admin/ajax.php...
CVE-2023-51052
S-CMS v5.0 was discovered to contain a SQL injection vulnerability via the Aformauth parameter at /admin/ajax.php...