EUVD-2018-9704

Malware in sbrugna...

CVE-2021-35437

SQL injection vulnerability in LMXCMS v.1.4 allows attacker to execute arbitrary code via the TagsAction.class...

LMXCMS SQL注入漏洞

lmxcms dream cms is a website building system of China dream cms lmxcms company. A SQL injection vulnerability exists in LMXCMS v1.4, which stems from the application's lack of validation of externally entered SQL statements. An attacker can exploit this vulnerability to execute arbitrary code vi...

CVE-2018-17964

Aryanic HighPortal 12.5 has XSS via an Add Tags action...

Deserialization of untrusted data

Aryanic HighPortal 12.5 has XSS via an Add Tags action...

HighPortal 12.5 Cross Site Scripting

Vulnerable Product: HighPortal Affected version: 12.5 Vulnerability Type: XSS CVE: CVE-2018-17964 CWE: CWE-79 Credit: Ali Abdollahi Remote: Yes Description:XSS vulnerability on Aryanic HighPortal version 12.5 via an Add Tags action.Contact: https://twitter.com/aliabdollahi2 References: -...

Sql injection

The "JEXTN Question And Answer" extension 3.1.0 for Joomla! has SQL Injection via the an parameter in a view=tags action, or the ques-srch parameter...

JEXTN Question And Answer extension SQL Injection Vulnerability

Joomla! is the U.S. Open Source Matters team developed a set of open source content management system CMS, the system provides RSS feeds, site search and other functions.JEXTN Question And Answer extension is used in one of the online question and answer plug-ins. A SQL injection vulnerability...

CVE-2017-11582

dayrui FineCms 5.0.9 has SQL Injection via the num parameter in an action=related or action=tags request to libraries/Template.php...