Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

RedhatCVE
RedhatCVEadded 2025/12/01 3:21 a.m.7 views

CVE-2025-13782

A vulnerability was identified in taosir WTCMS up to 01a5f68a3dfc2fdddb44eed967bb2d4f60487665. Affected by this issue is the function delete of the file application/Admin/Controller/SlideController.class.php of the component SlideController. The manipulation of the argument ids leads to sql...

9.8CVSS7AI score0.00025EPSS
Exploits0References1
EUVD
EUVDadded 2025/11/30 6:30 a.m.3 views

EUVD-2025-199916

A vulnerability was identified in taosir WTCMS up to 01a5f68a3dfc2fdddb44eed967bb2d4f60487665. Affected by this issue is the function delete of the file application/Admin/Controller/SlideController.class.php of the component SlideController. The manipulation of the argument ids leads to sql...

7.5CVSS6.4AI score0.00025EPSS
Exploits0References5
CVE
CVEadded 2025/11/30 3:2 a.m.13 views

CVE-2025-13782

Affects taosir WTCMS (SlideController component). The delete function in application/Admin/Controller/SlideController.class.php accepts an ids parameter and can be abused to perform SQL injection. This is exploitable remotely; public exploit is referenced. Affected versions are prior to 01a5f68a3...

9.8CVSS7.2AI score0.00025EPSS
Exploits0References5Affected Software1
Vulnrichment
Vulnrichmentadded 2025/11/30 3:2 a.m.2 views

CVE-2025-13782 taosir WTCMS SlideController SlideController.class.php delete sql injection

A vulnerability was identified in taosir WTCMS up to 01a5f68a3dfc2fdddb44eed967bb2d4f60487665. Affected by this issue is the function delete of the file application/Admin/Controller/SlideController.class.php of the component SlideController. The manipulation of the argument ids leads to sql...

7.5CVSS6.6AI score0.00025EPSS
Exploits0References4
Positive Technologies
Positive Technologiesadded 2025/11/30 12:0 a.m.6 views

PT-2025-48382

Name of the Vulnerable Software and Affected Versions taosir WTCMS versions prior to 01a5f68a3dfc2fdddb44eed967bb2d4f60487665 Description A flaw exists in taosir WTCMS related to the delete function within the SlideController.class.php file of the SlideController component. Manipulation of the id...

9.8CVSS7.7AI score0.00025EPSS
Exploits0References12
CNNVD
CNNVDadded 2025/11/30 12:0 a.m.2 views

wtcms SQL注入漏洞

wtcms is a ThinkPHP-based content management system CMS by Taosir Individual Developer. An SQL injection vulnerability exists in wtcms, which stems from incorrect manipulation of the parameter ids in the file application/Admin/Controller/SlideController.class.php, which could lead to SQL injectio...

9.8CVSS7.8AI score0.00025EPSS
Exploits0References5
CNVD
CNVDadded 2018/12/06 12:0 a.m.1 views

ThinkCMF SQL Injection Vulnerability (CNVD-2019-07959)

ThinkCMF is a Chinese content management framework based on PHP+MYSQL. A SQL injection vulnerability exists in the delete function in SlideController.class.php in ThinkCMF X2.2.2, which can be exploited by users with administrator privileges via the ids parameter in the slide operation...

7.2CVSS8.2AI score0.00277EPSS
Exploits1References1
Rows per page
Query Builder