7 matches found
EUVD-2023-33139
Malicious code in bioql PyPI...
CVE-2023-29598
lmxcms v1.4.1 was discovered to contain a SQL injection vulnerability via the setbook parameter at index.php...
CVE-2023-29598
lmxcms v1.4.1 was discovered to contain a SQL injection vulnerability via the setbook parameter at index.php...
Sql injection
lmxcms v1.4.1 was discovered to contain a SQL injection vulnerability via the setbook parameter at index.php...
CVE-2023-29598
LMXCMS v1.4.1 has a SQL injection vulnerability exposed through the setbook parameter of the index.php endpoint. The root cause is unsafe handling of input for setbook, enabling SQL execution with high impact on confidentiality, integrity, and availability (CVSS v3.1: 9.8, CRITICAL). There is no ...
lmxcms SQL注入漏洞
lmxcms dream cms is a website builder from China Dream Cms lmxcms company. A security vulnerability exists in lmxcms v1.4.1, which originates from the setbook parameter of index.php containing SQL injection...
PT-2023-22329 · Lmxcms · Lmxcms
Name of the Vulnerable Software and Affected Versions: lmxcms version 1.4.1 Description: The issue is a SQL injection vulnerability. It can be exploited via the setbook parameter at the "index.php" endpoint. Recommendations: For lmxcms version 1.4.1, consider restricting access to the setbook...