2 matches found
PT-2023-12405 · Phpcms · Phpcms
Name of the Vulnerable Software and Affected Versions: slackero phpwcms versions 1.9.26 and earlier Description: A critical issue was found in the software, affecting some unknown functionality. The manipulation of the argument $phpwcms'db prepend' leads to SQL injection. The attack can be launch...
PT-2023-12406 · Slackero · Phpcms
Name of the Vulnerable Software and Affected Versions: slackero phpwcms versions up to 1.9.26 Description: A vulnerability was found in the SVG File Handler component of slackero phpwcms, which can be exploited to lead to cross site scripting. The manipulation can be initiated remotely...