File upload vulnerability in myucms fo***.php page

MyuCMS open source content management system developed using ThinkPHP community mall. myucms fo.php page file upload vulnerability , an attacker can exploit the vulnerability to upload any file...

File Upload Vulnerability in RGCMS

RuiGu information management system RGCMS is a set of open source building management system, using PHP language, written in the framework of Thinkphp5.1.+, the database using MYSQL database. RGCMS has a file upload vulnerability. Attackers can use the vulnerability to obtain server privileges...

Command Execution Vulnerability in ThinkCMFX

ThinkCMF is a Chinese content management framework based on ThinkPHP+MySQL, of which the X series is based on ThinkPHP 3.2.3. A command execution vulnerability exists in ThinkCMFX, which can be exploited by attackers to execute malicious code...

TPshop open source mall system SQL injection vulnerabilities exist

TPshop open source mall system is a multi- merchant mode developed by Shenzhen SoBao Networks Co. Suitable for businesses and individuals to quickly build a personalized online shopping mall . System PC + background is based on ThinkPHP MVC framework for the development of cross-platform open...

SQL Injection Vulnerability in the i*** Parameters of Thunderwind Movie CMS Mo***.php Page

Thunderwind CMS is a video-on-demand system developed using Thinkphp framework + Mysql to ensure the stability and efficiency of the program. Thunderwind Movie CMS Mo.php page i parameters exist SQL injection vulnerability, attackers can use the vulnerability to obtain database sensitive...

Command Execution Vulnerability in MyuCMS v2.1.1020

MyuCMS is a content management system developed using ThinkPHP. A command execution vulnerability exists in MyuCMS v2.1.1020, which can be exploited by an attacker to gain control of a web server...

Arbitrary File Deletion Vulnerability in RGCMS Fi***.php File

RuiGu information management system RGCMS is a set of open source building management system, using PHP language, written in the framework of Thinkphp5.1.+, the database using MYSQL database. RGCMS Fi.php file exists in any file deletion vulnerability, an attacker can use this vulnerability to...

Code Execution Vulnerability in RGCMS

RGCMS is an open source building management system, written in PHP language, with Thinkphp 5.1 framework and MYSQL database. RGCMS code execution vulnerability, an attacker can use the vulnerability to obtain server privileges...

xss vulnerability in shuipfcms

ShuipFCMS is a content management system based on ThinkPHP framework as the core, using the independent grouping approach to development. Shuipfcms has an xss vulnerability. Attackers can use this vulnerability to obtain administrator cookies...

File Upload Vulnerability in YFCMF Im***.p*** Page

YFCMF is a backend content management framework using ThinkPHP 5.1. + foreign ACE 1.40 UI template. A file upload vulnerability exists in the YFCMF Im.p page, which can be exploited by an attacker to gain server privileges...

SchoolCMS Arbitrary PHP Code Execution Vulnerability

SchoolCMS is an open source school teaching management system based on ThinkPHP framework. The system includes student management , grade management and teacher management . A security vulnerability exists in SchoolCMS version 2.3.1. An attacker can exploit this vulnerability to execute arbitrary...

SchoolCMS Cross-Site Scripting Vulnerability (CNVD-2019-35030)

SchoolCMS is an open source school teaching management system based on ThinkPHP framework. The system includes student management , grade management and teacher management . SchoolCMS cross-site scripting vulnerability , remote attackers can use the vulnerability to inject arbitrary Web script or...

SchoolCMS Cross-Site Scripting Vulnerability

SchoolCMS is an open source school teaching management system based on ThinkPHP framework. The system includes student management , grade management and teacher management . SchoolCMS has a cross-site scripting vulnerability. Attackers can use this vulnerability to inject arbitrary Web script or...

Command Execution Vulnerability in Multiple php Files in Thunderwind Movie CMS v3.8.6

Thunderwind Movie CMS is a PHP based THINKPHP3.2.3 framework development, suitable for all kinds of video, film and television websites, film and television content management program. Thunderwind Movie CMS v3.8.6 multiple php file command execution vulnerability, an attacker can exploit the...

DSSHOP single store mall system has xss vulnerability

DSShop is based on ThinkPHP5 framework for the development of a single store mall system, full support for PC, WAP, microblogging and other terminal equipment, designed for business users to adapt to the entire business model of the solution, can fully meet the operational needs. DSSHOP single...

SQL Injection Vulnerability in LFCMS v3.8.6

LFCMS is a film and television content management system developed in PHP and based on THINKPHP framework suitable for all kinds of video, film and television websites. LFCMS v3.8.6 exists SQL injection vulnerability, the vulnerability stems from the failure to filter pid parameters, attackers ca...

tp5cms Cross-site Scripting Vulnerability

tp5cms is a content management system CMS framework written in the PHP language and based on technologies such as ThinkPHP, swiper and bootstrap. A cross-site scripting vulnerability exists in tp5cms 2017-05-25 and earlier versions. A remote attacker can exploit this vulnerability to inject...

efucms website builder system has cross-site scripting vulnerability

efucms is an easy-to-use content management system based on ThinkPHP. There is an xss vulnerability in efucms website builder system, which can be exploited by attackers to steal administrator cookies and fake administrator privilege login...

MobileCms v1.2 Arbitrary File Upload Vulnerability

MobileCms is a ThinkPhp framework based on the development of background content management system , provides for Android Iphone Phonegap windowsPhone call api interface , developers only need to make simple changes , you can provide interface data for mobile devices . MobileCms v1.2 there are...

XSS Vulnerability in StartBBS Lightweight Micro Community System at Postings

StartBBS Lightweight Micro Community System is an elegant, open source, lightweight community system based on Thinkphp 5.15 & Layui, with its own article system. StartBBS lightweight micro-community system v2.0.0 version of the posting at the storage-type XSS vulnerability, the attacker can inser...