CVE-2023-50073

EmpireCMS v7.5 was discovered to contain a SQL injection vulnerability via the ftppassword parameter at SetEnews.php...

EmpireCMS SQL Injection Vulnerability (CNVD-2024-4321448)

EmpireCMS Empire Content Management System is an open source content management system CMS. SQL injection vulnerability exists in EmpireCMS v7.5, the vulnerability stems from the lack of validation of the ftppassword parameter in SetEnews.php for external input SQL statements, which can be...

CVE-2023-50073

EmpireCMS v7.5 was discovered to contain a SQL injection vulnerability via the ftppassword parameter at SetEnews.php...

CVE-2023-50073

EmpireCMS v7.5 was discovered to contain a SQL injection vulnerability via the ftppassword parameter at SetEnews.php...

Sql injection

EmpireCMS v7.5 was discovered to contain a SQL injection vulnerability via the ftppassword parameter at SetEnews.php...

CVE-2023-50073

EmpireCMS v7.5 was discovered to contain a SQL injection vulnerability via the ftppassword parameter at SetEnews.php...

CVE-2023-50073

EmpireCMS v7.5 contains a SQL injection vulnerability exposed by the ftppassword parameter in SetEnews.php. The root cause is lack of validation/external input handling for ftppassword, enabling malicious SQL statements and potential unauthorized data access. Several connected records confirm the...

PT-2023-31469 · Empirecms · Empirecms

Name of the Vulnerable Software and Affected Versions: EmpireCMS version 7.5 Description: The issue is a SQL injection vulnerability. It occurs via the ftppassword parameter at the "SetEnews.php" endpoint. Recommendations: For EmpireCMS version 7.5, consider restricting access to the "SetEnews.ph...

EmpireCMS 安全漏洞

EmpireCMS Empire Content Management System is an open source content management system CMS. SQL injection vulnerability exists in EmpireCMS v7.5, the vulnerability stems from the lack of validation of the ftppassword parameter in SetEnews.php for external input SQL statements, which can be...