CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

197 matches found

Vulnrichment•added 2025/12/17 10:44 p.m.•3 views

CVE-2023-53927 PHPJabbers Simple CMS 5.0 Stored Cross-Site Scripting via Section Creation

PHPJabbers Simple CMS 5.0 contains a stored cross-site scripting vulnerability that allows authenticated attackers to inject malicious scripts through section name parameters. Attackers can create sections with embedded JavaScript payloads that will execute when administrators view the sections,...

5.4CVSS6.2AI score0.00233EPSS

Exploits1References3

CVE•added 2025/12/17 10:44 p.m.•16 views

CVE-2023-53926

CVE-2023-53926 affects PHPJabbers Simple CMS 5.0. A SQL injection in the 'column' parameter of the index.php endpoint can allow remote attackers to manipulate queries and potentially extract or modify database information. The vulnerability is documented across multiple sources (including RH, NVD...

9.8CVSS7.6AI score0.0051EPSS

Exploits1References3Affected Software1

Cvelist•added 2025/12/17 10:44 p.m.•19 views

CVE-2023-53926 PHPJabbers Simple CMS 5.0 SQL Injection via Column Parameter

PHPJabbers Simple CMS 5.0 contains a SQL injection vulnerability in the 'column' parameter that allows remote attackers to manipulate database queries. Attackers can inject crafted SQL payloads through the 'column' parameter in the index.php endpoint to potentially extract or modify database...

9.8CVSS0.0051EPSS

Exploits1References3

Vulnrichment•added 2025/12/17 10:44 p.m.•5 views

CVE-2023-53926 PHPJabbers Simple CMS 5.0 SQL Injection via Column Parameter

9.8CVSS7.6AI score0.0051EPSS

Exploits1References3

CNNVD•added 2025/12/17 12:0 a.m.•3 views

PHPJabbers Simple CMS SQL注入漏洞

PHPJabbers Simple CMS is a PHPJabbers open source content management system. A SQL injection vulnerability exists in PHPJabbers Simple CMS version 5.0, which originates from a SQL injection in the column parameter of the index.php endpoint, which may result in database information being extracted...

9.8CVSS7.7AI score0.0051EPSS

Exploits1References4

CNNVD•added 2025/12/17 12:0 a.m.•3 views

PHPJabbers Simple CMS 跨站脚本漏洞

PHPJabbers Simple CMS is an open source content management system from PHPJabbers. A cross-site scripting vulnerability exists in PHPJabbers Simple CMS version 5.0, which originates from an authenticated attacker being able to inject malicious script via the section name parameter, potentially...

5.4CVSS5.9AI score0.00233EPSS

Exploits1References4

Positive Technologies•added 2025/12/17 12:0 a.m.•4 views

PT-2025-51965

Name of the Vulnerable Software and Affected Versions PHPJabbers Simple CMS version 5.0 Description The software contains a stored cross-site scripting issue. Authenticated attackers can inject malicious scripts through section name parameters. Attackers can create sections with embedded JavaScri...

5.4CVSS6.7AI score0.00233EPSS

Exploits1References7