8 matches found
EUVD-2020-16308
Malware in sbrugna...
CVE-2020-23564
File Upload vulnerability in SEMCMS 3.9 allows remote attackers to run arbitrary code via SEMCMSUpfile.php...
Sql injection
SEMCMS 3.9 is vulnerable to SQL Injection. Due to the lack of security checks on the input of the application, the attacker uses the existing application to inject malicious SQL commands into the background database engine for execution, and sends some attack codes as commands or query statements...
CVE-2023-48863
SEMCMS 3.9 is vulnerable to SQL Injection. Due to the lack of security checks on the input of the application, the attacker uses the existing application to inject malicious SQL commands into the background database engine for execution, and sends some attack codes as commands or query statements...
CVE-2020-23564
File Upload vulnerability in SEMCMS 3.9 allows remote attackers to run arbitrary code via SEMCMSUpfile.php...
Unrestricted file upload
File Upload vulnerability in SEMCMS 3.9 allows remote attackers to run arbitrary code via SEMCMSUpfile.php...
CVE-2020-23564
File Upload vulnerability in SEMCMS 3.9 allows remote attackers to run arbitrary code via SEMCMSUpfile.php...
CVE-2020-23564
SEMCMS 3.9 is affected by a file upload vulnerability in SEMCMS_Upfile.php that can allow remote attackers to run arbitrary code. Root cause cited: lack of proper validation of uploaded files. Impact per sources is arbitrary code execution (high severity). Remediation: as a temporary workaround, ...