NiuShop suffers from SQL injection vulnerability (CNVD-2019-43348)

Niushop open source mall using thinkphp5.0 MySQL development language development , completely open source mall system , can be used for enterprises , individuals to establish their own online free mall , support for open source WeChat Mall , open source applet , open source new retail , B2B2C,...

NiuShop suffers from SQL injection vulnerability

Niushop open source mall using thinkphp5.0 MySQL development language development , completely open source mall system , can be used for enterprises , individuals to establish their own online free mall , support for open source WeChat Mall , open source applet , open source new retail , B2B2C,...

NiuShop suffers from SQL injection vulnerability (CNVD-2019-43347)

Niushop open source mall using thinkphp5.0 MySQL development language development , completely open source mall system , can be used for enterprises , individuals to establish their own online free mall , support for open source WeChat Mall , open source applet , open source new retail , B2B2C,...

File Upload Vulnerability in OneBase

OneBase is an open source, fast and simple, object-oriented application development architecture based on ThinkPHP5. A file upload vulnerability exists in OneBase, which can be exploited by an attacker to gain control of the web server...

Arbitrary File Read Vulnerability in KiteCMS

KiteCMS open source web content management system CMS, the system is based on the framework ThinkPHP5.1. version of the development, applicable to individuals and enterprises to quickly build stations and development needs. KiteCMS arbitrary file read vulnerability , attackers can use the...

MileagePlus open source blog system v2.2 has SQL injection vulnerabilities

Mile High Open Source Blog System is a blog system based on ThinkPHP development. MileagePlus Open Source Blog System v2.2 suffers from a SQL injection vulnerability. Attackers can exploit the vulnerability to obtain sensitive database information...

MileagePlus open source blog system V2.0 suffers from SQL injection vulnerabilities

MileagePlus Blog System is a blog system based on ThinkPHP development. MileageMi Open Source Blog System V2.0 suffers from a SQL injection vulnerability, which allows attackers to exploit the vulnerability to obtain sensitive information from the database...

Code Execution Vulnerability in ShuipFCMS

ShuipFCMS is a content management system based on ThinkPHP framework as the core and developed in an independent grouping approach. ShuipFCMS suffers from a code execution vulnerability that can be exploited by an attacker to gain control of the web server...

Arbitrary File Deletion Vulnerability in RGCMS Fi***.php File

RuiGu information management system RGCMS is a set of open source building management system, using PHP language, written in the framework of Thinkphp5.1.+, the database using MYSQL database. RGCMS Fi.php file exists in any file deletion vulnerability, an attacker can use this vulnerability to...

Arbitrary File Download Vulnerability in RGCMS

RuiGu information management system RGCMS is a set of open source building management system, using PHP language, written in the framework of Thinkphp5.1.+, the database using MYSQL database. RGCMS arbitrary file download vulnerability, an attacker can use the vulnerability to read any file in th...

Directory Traversal Vulnerability in RGCMS

RuiGu information management system RGCMS is a set of open source building management system, using PHP language, written in the framework of Thinkphp5.1.+, the database using MYSQL database. RGCMS has a directory traversal vulnerability that can be exploited by an attacker to view the list of...

Guojiz Change Password Interface Has Arbitrary User Privilege Vulnerability

Guojiz is a light community system based on layui front-end framework and thinkphp. Guojiz password change interface has any user privilege vulnerability, an attacker can use this vulnerability to modify any user's data table information, so as to enhance their own or other people's privileges...

XSS vulnerability in Guojiz

Guojiz is a light community system based on layui front-end framework and thinkphp. Guojiz has an XSS vulnerability that can be exploited by an attacker to obtain an administrator cookie...

WTCMS Cross-Site Request Forgery Vulnerability (CNVD-2019-34388)

WTCMS is a ThinkPHP-based content management system CMS. A cross-site request forgery vulnerability exists in WTCMS version 1.0, which can be exploited by an attacker to send unintended requests to the server via an affected client...

NoneCMS Cross-Site Request Forgery Vulnerability (CNVD-2019-35786)

NoneCMS is a content management system CMS based on Thinkphp. A cross-site request forgery vulnerability exists in the public/index.php/admin/admin/dele.html page in NoneCMS v1.3, which can be exploited by an attacker to send an unintended request to the server via an affected client...

Code Execution Vulnerability in Thunderwind Movie CMS (CNVD-2019-33540)

Thunderwind Movie CMS is a PHP based THINKPHP3.2.3 framework development, suitable for all kinds of video, film and television websites, film and television content management program. Thunderwind CMS has a code execution vulnerability that can be exploited by attackers to gain control of the web...

Code Execution Vulnerability in RGCMS

RGCMS is an open source building management system, written in PHP language, with Thinkphp 5.1 framework and MYSQL database. RGCMS code execution vulnerability, an attacker can use the vulnerability to obtain server privileges...

File upload vulnerability in yershop

yershop open source online store system is a thinkphp5 based mall system , with a key to generate the controller , model , validator , template , general additions and deletions and other functions . yershop backend file upload vulnerability , attackers can exploit the vulnerability to obtain...

Code execution vulnerability in yershop

yershop open source online store system is a thinkphp5-based mall system with a key to generate controllers , models , validators , templates , general additions and deletions , and other functions. yershop code execution vulnerability exists in the background , an attacker can exploit the...

xss vulnerability in shuipfcms

ShuipFCMS is a content management system based on ThinkPHP framework as the core, using the independent grouping approach to development. Shuipfcms has an xss vulnerability. Attackers can use this vulnerability to obtain administrator cookies...