6 matches found
CVE-2022-24264
Cuppa CMS v1.0 was discovered to contain a SQL injection vulnerability in /administrator/components/tablemanager/ via the searchword parameter...
CVE-2022-24264
Cuppa CMS v1.0 was discovered to contain a SQL injection vulnerability in /administrator/components/tablemanager/ via the searchword parameter...
Sql injection
Cuppa CMS v1.0 was discovered to contain a SQL injection vulnerability in /administrator/components/tablemanager/ via the searchword parameter...
CVE-2022-24264
CVE-2022-24264 concerns Cuppa CMS v1.0. A SQL injection vulnerability exists in the admin path /administrator/components/table_manager/ via the search_word parameter (CWE-89). This could allow an attacker to manipulate SQL queries, potentially leading to unauthorized access and data exposure with...
CVE-2022-24264
Cuppa CMS v1.0 was discovered to contain a SQL injection vulnerability in /administrator/components/tablemanager/ via the searchword parameter...
CVE-2012-1069
The CVE-2012-1069 entry describes a Cross-site Scripting (XSS) vulnerability in the search module’s Word search function (module/kb/search_word) in lknSupport, exploitable via PATH_INFO to inject arbitrary scripts/HTML. Impact details indicate no confidentiality or availability impact, but partia...