Lucene search
K

12 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 12:37 p.m.5 views

CVE-2023-50563

Semcms v4.8 was discovered to contain a SQL injection vulnerability via the AID parameter at SEMCMSFunction.php...

9.8CVSS8.3AI score0.00628EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-22751

Malicious code in bioql PyPI...

9.8CVSS6.6AI score0.01023EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.8 views

EUVD-2024-36219

Malicious code in bioql PyPI...

7.5CVSS6.6AI score0.007EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 10:18 a.m.9 views

CVE-2024-32409

An issue in SEMCMS v.4.8 allows a remote attacker to execute arbitrary code via a crafted script...

7.1CVSS7.9AI score0.00492EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 10:7 a.m.7 views

CVE-2024-31010

SQL injection vulnerability in SEMCMS v.4.8, allows a remote attacker to obtain sensitive information via the ID parameter in Banner.php...

7.5CVSS7.4AI score0.00791EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 9:46 a.m.20 views

CVE-2024-25422

SQL Injection vulnerability in SEMCMS v.4.8 allows a remote attacker to execute arbitrary code and obtain sensitive information via the SEMCMSMenu.php component...

9.8CVSS8.4AI score0.01023EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/02/14 5:27 a.m.13 views

CVE-2024-36800

A SQL injection vulnerability in SEMCMS v.4.8, allows a remote attacker to obtain sensitive information via the ID parameter in Download.php...

7.5CVSS7.3AI score0.007EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2025/02/14 5:5 a.m.11 views

CVE-2024-36801

A SQL injection vulnerability in SEMCMS v.4.8, allows a remote attacker to obtain sensitive information via the lgid parameter in Download.php...

5.9CVSS7.3AI score0.00391EPSS
Exploits1References3
Cvelist
Cvelist
added 2024/06/04 12:47 p.m.28 views

CVE-2024-36801

A SQL injection vulnerability in SEMCMS v.4.8, allows a remote attacker to obtain sensitive information via the lgid parameter in Download.php...

7AI score0.00391EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2024/06/04 12:0 a.m.3 views

PT-2024-27163 · Semcms · Semcms

Name of the Vulnerable Software and Affected Versions: SEMCMS version 4.8 Description: A SQL injection issue allows a remote attacker to obtain sensitive information via the ID parameter in "Download.php". Recommendations: For SEMCMS version 4.8, update to a version that fixes this issue, as usin...

7.5CVSS7AI score0.007EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2024/04/18 12:0 a.m.4 views

PT-2024-23682 · Semcms · Semcms

Name of the Vulnerable Software and Affected Versions: SEMCMS version 4.8 Description: The issue allows a remote attacker to obtain sensitive information. This is achieved via the ID parameter in the SEMCMS User.php component. Recommendations: For SEMCMS version 4.8, avoid using the ID parameter ...

9.8CVSS6.3AI score0.00756EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 1976/01/01 12:0 a.m.15 views

CVE-2024-36801

A SQL injection vulnerability in SEMCMS v.4.8, allows a remote attacker to obtain sensitive information via the lgid parameter in Download.php...

7.3AI score0.00391EPSS
Exploits1References1
Rows per page
Query Builder