151 matches found
File Containment Vulnerability in MetInfo v5.0.4 of Changsha Mito Information Technology Co.
Mito enterprise building system MetInfo is a free and open source enterprise CMS. Changsha Mito Information Technology Co., Ltd MetInfo v5.0.4 version of the file contains a vulnerability that can be exploited by attackers to view sensitive server files...
File Deletion Vulnerability in SongCMS PHP Version
SongCMS is a PHP MySQL, ASP Access/SQL Server based development , enterprise-oriented , multi-language support , free , open source CMS, to help business users to quickly build and deploy enterprise-level portal . SongCMS arbitrary file deletion vulnerability , an attacker can exploit the...
Langfang Extreme Networks Technology Co., Ltd Extreme CMS has SQL injection vulnerability
Extreme CMS is an open source PHPCMS web content management system. Ltd. Extreme CMS suffers from a SQL injection vulnerability, which can be exploited by attackers to obtain sensitive information from the database...
Unspecified Vulnerability in Concrete5
PortlandLabs Concrete5 is a U.S. PortlandLabs company's open source content management system CMS. A security vulnerability exists in PortlandLabs Concrete5 versions prior to 8.5.3. No details of the vulnerability are provided at this time...
File Upload Vulnerability in CMS Ap***.php File
Xunrui CMS free open source system is based on PHP7 language using the latest CodeIgniter4 as the development framework for the production of web content management framework. XunRui CMS Ap.php file file upload vulnerability. Attackers can use the vulnerability to upload webshell, get server...
Command execution vulnerability in SongCMS PHP version (CNVD-2020-38508)
SongCMS PHP Edition is an open source CMS based on PHP+MySQL. SongCMS PHP Edition suffers from a command execution vulnerability that can be exploited by attackers to execute malicious code...
Command Execution Vulnerability in Rice CMS (CNVD-2020-32477)
DAMI CMS is a free open source, fast, simple PC building and mobile building integrated all-in-one system. Command execution vulnerability exists in Daimi CMS, which can be exploited by attackers to execute malicious code and obtain server administrative privileges...
XSS vulnerability in Extreme CMS (CNVD-2020-30150)
Extreme CMS is an open source and free PHPCMS web content management system. Extreme CMS has an XSS vulnerability that can be exploited by attackers to obtain user cookie information...
Command Execution Vulnerability in Five Fingers CMS
Five Fingers CMS is an open source content management system developed by Beijing Five Fingers Internet Technology Co. Five Fingers CMS has a command execution vulnerability , attackers can exploit the vulnerability to obtain server privileges...
Command Execution Vulnerability in SongCMS PHP Version
SongCMS PHP Edition is an open source CMS based on PHP+MySQL. SongCMS PHP Edition suffers from a command execution vulnerability that can be exploited by attackers to execute malicious code...
AlpacaCMS suffers from SQL injection vulnerability (CNVD-2020-27245)
AlpacaCMS is an open source lightweight tree CMS system . It is based on php+mysql and b2core MVC as the underlying architecture . AlpacaCMS SQL injection vulnerability , an attacker can exploit the vulnerability to obtain database data...
JunAms content management system suffers from SQL injection vulnerability (CNVD-2020-24743)
JunAMS is an open source content management system with ThinkPHP as its framework. The JunAMS content management system suffers from a SQL injection vulnerability that can be exploited by attackers to obtain database information...
60CycleCMS - (news.php) SQL Injection Vulnerability
Exploit for php platform in category web applications Exploit Title: 60CycleCMS 2.5.2 - 'news.php' SQL Injection Exploit Author: Unkn0wn Vendor Homepage: http://davidvg.com/ Software Link: https://www.opensourcecms.com/60cyclecms Version: 2.5.2 Tested on: Ubuntu CVE : N/A...
DM enterprise website system background exists arbitrary file deletion vulnerability
DM enterprise building system is developed by php + mysql a set of specialized in small and medium-sized enterprise website construction of open source cms. DM enterprise website system background there are arbitrary file deletion vulnerability , an attacker can exploit the vulnerability to delet...
SQL Injection Vulnerability in xyhCMS of Kunming Yuntao Technology Co.
Kunming Yuntao Technology Co. xyhCMS is a completely open source set of CMS content management system, simple, easy to use, secure, stable, free. Kunming Yuntao Technology Co. xyhCMS SQL injection vulnerability, attackers can exploit the vulnerability to obtain database privileges...
SQL Injection Vulnerability in DM Website Building System (CNVD-2020-23765)
DM enterprise building system is developed by php + mysql a set of specialized in small and medium-sized enterprise website construction of open source cms. DM website builder system has a SQL injection vulnerability , attackers can use the vulnerability to obtain sensitive information on the sit...
Command Execution Vulnerability in eyoucms of Hainan Zanzan Network Technology Co.
EyouCms is a free + open source enterprise content management system based on the TP5.0 framework as the core development, focusing on the needs of enterprise building users. Hainan Zanzan Network Technology Co. eyoucms has a command execution vulnerability that can be exploited by attackers to...
Bludit Cross-Site Scripting Vulnerability (CNVD-2020-13197)
Bludit is an open source, lightweight blog content management system CMS. A cross-site scripting vulnerability exists in Bludit version 3.10.0. The vulnerability stems from a lack of proper validation of client-side data by the WEB application. An attacker can exploit the vulnerability to execute...
Information leakage vulnerability in PbootCMS of Hunan Avant Cloud Network Technology Co.
PbootCMS is a new core and permanent open source free PHP enterprise website development and construction management system , is a set of efficient , simple , strong and free commercial PHP CMS source code , to meet the needs of various types of enterprise website development and construction...
SQL Injection Vulnerability in Super CMS Content Management System Backend
Super CMS content management system by the SEO Research Center moonseo.cn in order to solve the problem of website optimization and research and development of a set of products, this product adopts an object-oriented approach to independent research and development of the MVC framework...