3 matches found
PT-2026-25621
A vulnerability was determined in SSCMS up to 7.4.0. This vulnerability affects the function PathUtils.RemoveParentPath of the file /api/admin/plugins/install/actions/download. This manipulation of the argument path causes path traversal. Remote exploitation of the attack is possible. The exploit...
S-CMS php version enterprise website builder system v3.0 SQL injection vulnerability in background aj***.p*** st*** parameters
Ltd. is mainly engaged in computer software, hardware development and sales, Internet technology development, technical services, network information systems integration, web design, network engineering design, installation, commissioning, maintenance, software outsourcing services. S-CMS php...
A week in security (August 13 – August 19)
Last week on Malwarebytes Labs, we talked about how Process Doppelgänging meets Process Hollowing in the Osiris dropper, provided hints, tips, and links for a safer school year, gave a recap of Black Hat USA 2018, offered some tips for a secure content management system, highlighted a silly...