Lucene search
K

24 matches found

cvelist
cvelist
added 2026/02/03 10:1 p.m.28 views

CVE-2020-37076 Victor CMS 1.0 - 'post' SQL Injection

Victor CMS version 1.0 contains a SQL injection vulnerability in the 'post' parameter on post.php that allows remote attackers to manipulate database queries. Attackers can exploit this vulnerability by sending crafted UNION SELECT payloads to extract database information through boolean-based,...

8.8CVSS0.00365EPSS
Exploits1References3
vulnrichment
vulnrichment
added 2023/05/08 12:0 a.m.8 views

CVE-2020-23966

SQL Injection vulnerability in victor cms 1.0 allows attackers to execute arbitrary commands via the post parameter to /post.php in a crafted GET request...

9.9AI score0.0084EPSS
Exploits1References2
cve
cve
added 2023/05/08 12:0 a.m.55 views

CVE-2020-23966

Victor CMS 1.0 is affected by a SQL Injection in the post parameter of /post.php via crafted GET requests. The vulnerability allows an attacker to execute arbitrary commands, with CVSS 3.1 base score 9.8 (CRITICAL) and impacts to confidentiality, integrity, and availability (C:H, I:H, A:H). Root ...

9.8CVSS9.8AI score0.0084EPSS
Exploits1References2Affected Software1
packetstorm
packetstorm
added 2020/12/22 12:0 a.m.225 views

Victor CMS 1.0 Shell Upload

Exploit Title: Victor CMS 1.0 - File Upload To RCE Date: 20.12.2020 Exploit Author: Mosaaed Vendor Homepage: https://github.com/VictorAlagwu/CMSsite Software Link: https://github.com/VictorAlagwu/CMSsite/archive/master.zip Version: 1.0 Tested on: Apache2/Linux Step1: register...

Exploits0
exploitdb
exploitdb
added 2020/12/22 12:0 a.m.217 views

Victor CMS 1.0 - File Upload To RCE

Exploit Title: Victor CMS 1.0 - File Upload To RCE Date: 20.12.2020 Exploit Author: Mosaaed Vendor Homepage: https://github.com/VictorAlagwu/CMSsite Software Link: https://github.com/VictorAlagwu/CMSsite/archive/master.zip Version: 1.0 Tested on: Apache2/Linux Step1: register...

7.4AI score
Exploits0
packetstorm
packetstorm
added 2020/12/17 12:0 a.m.180 views

Victor CMS 1.0 SQL Injection

Exploit Title: Victor CMS 1.0 - Multiple SQL Injection Authenticated Date: 17.12.2020 Exploit Author: Furkan Göksel Vendor Homepage: https://github.com/VictorAlagwu/CMSsite Software Link: https://github.com/VictorAlagwu/CMSsite/archive/master.zip Version: 1.0 Description: The Victor CMS v1.0...

0.6AI score
Exploits0
exploitdb
exploitdb
added 2020/12/17 12:0 a.m.186 views

Victor CMS 1.0 - Multiple SQL Injection (Authenticated)

Exploit Title: Victor CMS 1.0 - Multiple SQL Injection Authenticated Date: 17.12.2020 Exploit Author: Furkan Göksel Vendor Homepage: https://github.com/VictorAlagwu/CMSsite Software Link: https://github.com/VictorAlagwu/CMSsite/archive/master.zip Version: 1.0 Description: The Victor CMS v1.0...

7.4AI score
Exploits0
cnnvd
cnnvd
added 2020/12/02 12:0 a.m.6 views

Victor CMS SQL注入漏洞

Victor CMS is a simple content management system. Victor CMS 1.0 suffers from a SQL injection vulnerability. The vulnerability can be exploited to conduct SQL injection attacks via the 'search' parameter on the search.php page...

9.8CVSS7.3AI score0.01875EPSS
Exploits0References4
zdt
zdt
added 2020/08/06 12:0 a.m.165 views

Victor CMS 1.0 - (Search) SQL Injection Vulnerability

Exploit for php platform in category web applications Exploit Title: Victor CMS 1.0 - 'Search' SQL Injection Exploit Author: Edo Maland Vendor Homepage: https://github.com/VictorAlagwu/CMSsite Software Link: https://github.com/VictorAlagwu/CMSsite/archive/master.zip Version: 1.0 Tested on: XAMPP ...

0.4AI score
Exploits0
exploitdb
exploitdb
added 2020/08/06 12:0 a.m.294 views

Victor CMS 1.0 - 'Search' SQL Injection

Exploit Title: Victor CMS 1.0 - 'Search' SQL Injection Date: 2020-08-04 Exploit Author: Edo Maland Vendor Homepage: https://github.com/VictorAlagwu/CMSsite Software Link: https://github.com/VictorAlagwu/CMSsite/archive/master.zip Version: 1.0 Tested on: XAMPP / Windows 10...

7.4AI score
Exploits0
exploitdb
exploitdb
added 2020/06/30 12:0 a.m.359 views

Victor CMS 1.0 - 'user_firstname' Persistent Cross-Site Scripting

Exploit Title: Victor CMS 1.0 - 'userfirstname' Persistent Cross-Site Scripting Google Dork: N/A Date: 2020-06-28 Exploit Author: Anushree Priyadarshini Vendor Homepage: https://github.com/VictorAlagwu/CMSsite Software Link:https://github.com/VictorAlagwu/CMSsite/archive/master.zip Version: 1.0...

6.1CVSS6.4AI score0.02114EPSS
Exploits2
zdt
zdt
added 2020/06/30 12:0 a.m.144 views

Victor CMS 1.0 - (user_firstname) Persistent Cross-Site Scripting Vulnerability

Exploit for php platform in category web applications Exploit Title: Victor CMS 1.0 - 'userfirstname' Persistent Cross-Site Scripting Google Dork: N/A Date: 2020-06-28 Exploit Author: Anushree Priyadarshini Vendor Homepage: https://github.com/VictorAlagwu/CMSsite Software...

7.1AI score
Exploits0
nvd
nvd
added 2020/06/22 6:15 p.m.42 views

CVE-2020-13427

Victor CMS 1.0 has Persistent XSS in admin/users.php?source=adduser via the username, userfirstname, or userlastname parameter...

6.1CVSS0.00874EPSS
Exploits1References2
prion
prion
added 2020/06/22 6:15 p.m.20 views

Cross site scripting

Victor CMS 1.0 has Persistent XSS in admin/users.php?source=adduser via the username, userfirstname, or userlastname parameter...

4.3CVSS6AI score0.00874EPSS
Exploits1References2Affected Software1
cvelist
cvelist
added 2020/06/22 5:34 p.m.34 views

CVE-2020-13427

Victor CMS 1.0 has Persistent XSS in admin/users.php?source=adduser via the username, userfirstname, or userlastname parameter...

6.1AI score0.00874EPSS
Exploits1References2
zdt
zdt
added 2020/05/26 12:0 a.m.32 views

Victor CMS 1.0 - (add_user) Persistent Cross-Site Scripting Vulnerability

Exploit for php platform in category web applications Exploit Title: Victor CMS 1.0 - 'adduser' Persistent Cross-Site Scripting Exploit Author: Nitya Nand Vendor Homepage: https://github.com/VictorAlagwu/CMSsite Software Link: https://github.com/VictorAlagwu/CMSsite/archive/master.zip Version: 1....

7.1AI score
Exploits0
exploitdb
exploitdb
added 2020/05/25 12:0 a.m.524 views

Victor CMS 1.0 - 'add_user' Persistent Cross-Site Scripting

Exploit Title: Victor CMS 1.0 - 'adduser' Persistent Cross-Site Scripting Google Dork: N/A Date: 2020-05-23 Exploit Author: Nitya Nand Vendor Homepage: https://github.com/VictorAlagwu/CMSsite Software Link: https://github.com/VictorAlagwu/CMSsite/archive/master.zip Version: 1.0 Tested on: Linux C...

7.4AI score
Exploits0
packetstorm
packetstorm
added 2020/05/19 12:0 a.m.214 views

Victor CMS 1.0 SQL Injection

Exploit Title: Victor CMS 1.0 - 'catid' SQL Injection Google Dork: N/A Date: 2020-05-19 Exploit Author: Kishan Lal Choudhary Vendor Homepage: https://github.com/VictorAlagwu/CMSsite Software Link: https://github.com/VictorAlagwu/CMSsite/archive/master.zip Version: 1.0 Tested on: Windows 10...

0.5AI score
Exploits0
packetstorm
packetstorm
added 2020/05/19 12:0 a.m.1290 views

Victor CMS 1.0 Shell Upload

Exploit Title: Victor CMS 1.0 - Authenticated Arbitrary File Upload Google Dork: N/A Date: 2020-05-19 Exploit Author: Kishan Lal Choudhary Vendor Homepage: https://github.com/VictorAlagwu/CMSsite Software Link: https://github.com/VictorAlagwu/CMSsite/archive/master.zip Version: 1.0 Tested on:...

7.4AI score
Exploits0
zdt
zdt
added 2020/05/19 12:0 a.m.71 views

Victor CMS 1.0 - (cat_id) SQL Injection Vulnerability

Exploit for php platform in category web applications Exploit Title: Victor CMS 1.0 - 'catid' SQL Injection Exploit Author: Kishan Lal Choudhary Vendor Homepage: https://github.com/VictorAlagwu/CMSsite Software Link: https://github.com/VictorAlagwu/CMSsite/archive/master.zip Version: 1.0 Tested o...

0.3AI score
Exploits0
Rows per page
Query Builder