40 matches found
VulnCheck KEV: CVE-2024-9916
A vulnerability, which was classified as critical, has been found in HuangDou UTCMS V9. Affected by this issue is some unknown functionality of the file app/modules/ut-cac/admin/cli.php. The manipulation of the argument o leads to os command injection. The attack may be launched remotely. The...
CVE-2024-9916
A vulnerability, which was classified as critical, has been found in HuangDou UTCMS V9. Affected by this issue is some unknown functionality of the file app/modules/ut-cac/admin/cli.php. The manipulation of the argument o leads to os command injection. The attack may be launched remotely. The...
CVE-2024-9917
A vulnerability, which was classified as critical, was found in HuangDou UTCMS V9. This affects an unknown part of the file app/modules/ut-template/admin/templatecreat.php. The manipulation of the argument content leads to deserialization. It is possible to initiate the attack remotely. The explo...
CVE-2024-9918
A vulnerability has been found in HuangDou UTCMS V9 and classified as critical. This vulnerability affects the function RunSql of the file app/modules/ut-data/admin/sql.php. The manipulation of the argument sql leads to sql injection. The attack can be initiated remotely. The exploit has been...
CVE-2024-9917
A vulnerability, which was classified as critical, was found in HuangDou UTCMS V9. This affects an unknown part of the file app/modules/ut-template/admin/templatecreat.php. The manipulation of the argument content leads to deserialization. It is possible to initiate the attack remotely. The explo...
CVE-2024-9918
A vulnerability has been found in HuangDou UTCMS V9 and classified as critical. This vulnerability affects the function RunSql of the file app/modules/ut-data/admin/sql.php. The manipulation of the argument sql leads to sql injection. The attack can be initiated remotely. The exploit has been...
CVE-2024-9918 HuangDou UTCMS sql.php RunSql sql injection
A vulnerability has been found in HuangDou UTCMS V9 and classified as critical. This vulnerability affects the function RunSql of the file app/modules/ut-data/admin/sql.php. The manipulation of the argument sql leads to sql injection. The attack can be initiated remotely. The exploit has been...
CVE-2024-9918 HuangDou UTCMS sql.php RunSql sql injection
A vulnerability has been found in HuangDou UTCMS V9 and classified as critical. This vulnerability affects the function RunSql of the file app/modules/ut-data/admin/sql.php. The manipulation of the argument sql leads to sql injection. The attack can be initiated remotely. The exploit has been...
CVE-2024-9917
CVE-2024-9917 affects HuangDou UTCMS V9, with a deserialization flaw in the file app/modules/ut-template/admin/template_creat.php triggered via the content argument. Remote exploitation is possible, and public exploit disclosure is noted. Multiple sources corroborate the issue and indicate vendor...
CVE-2024-9917 HuangDou UTCMS template_creat.php deserialization
A vulnerability, which was classified as critical, was found in HuangDou UTCMS V9. This affects an unknown part of the file app/modules/ut-template/admin/templatecreat.php. The manipulation of the argument content leads to deserialization. It is possible to initiate the attack remotely. The explo...
CVE-2024-9917 HuangDou UTCMS template_creat.php deserialization
A vulnerability, which was classified as critical, was found in HuangDou UTCMS V9. This affects an unknown part of the file app/modules/ut-template/admin/templatecreat.php. The manipulation of the argument content leads to deserialization. It is possible to initiate the attack remotely. The explo...
CVE-2024-9916
A vulnerability, which was classified as critical, has been found in HuangDou UTCMS V9. Affected by this issue is some unknown functionality of the file app/modules/ut-cac/admin/cli.php. The manipulation of the argument o leads to os command injection. The attack may be launched remotely. The...
CVE-2024-9916
HuangDou UTCMS V9 is affected by a remote OS command injection in app/modules/ut-cac/admin/cli.php via the o parameter. The vulnerability affects unknown functionality and can be exploited remotely; public exploit details exist and vendor reportedly did not respond. Remediation per sources: apply...
CVE-2024-9916 HuangDou UTCMS cli.php os command injection
A vulnerability, which was classified as critical, has been found in HuangDou UTCMS V9. Affected by this issue is some unknown functionality of the file app/modules/ut-cac/admin/cli.php. The manipulation of the argument o leads to os command injection. The attack may be launched remotely. The...
CVE-2024-9916 HuangDou UTCMS cli.php os command injection
A vulnerability, which was classified as critical, has been found in HuangDou UTCMS V9. Affected by this issue is some unknown functionality of the file app/modules/ut-cac/admin/cli.php. The manipulation of the argument o leads to os command injection. The attack may be launched remotely. The...
UTCMS 代码问题漏洞
UTCMS is a content management system built on the UT framework by the individual developer of usaltool. A code issue vulnerability exists in UTCMS V9 that stems from mishandling of parameters, leading to deserialization...
PT-2024-39935 · Unknown · Huangdou Utcms
Name of the Vulnerable Software and Affected Versions: HuangDou UTCMS version V9 Description: A critical vulnerability has been found in the function RunSql of the file app/modules/ut-data/admin/sql.php. The manipulation of the argument sql leads to sql injection. The attack can be initiated...
PT-2024-39934 · Huangdou · Huangdou Utcms
Name of the Vulnerable Software and Affected Versions: HuangDou UTCMS version V9 Description: A critical issue was found in HuangDou UTCMS, affecting an unknown part of the file app/modules/ut-template/admin/template creat.php. The manipulation of the content argument leads to deserialization. It...
UTCMS 操作系统命令注入漏洞
UTCMS is a content management system built on the UT framework by the individual developer of visualtool. UTCMS V9 suffers from an OS command injection vulnerability that stems from improper handling of parameters, resulting in os command injection...
PT-2024-39933 · Huangdou · Huangdou Utcms
Name of the Vulnerable Software and Affected Versions: HuangDou UTCMS version V9 Description: A critical issue has been found in HuangDou UTCMS, affecting some unknown functionality of the file app/modules/ut-cac/admin/cli.php. The manipulation of the argument o leads to os command injection. Thi...