Boyuncms@1.4 Security Vulnerabilities and Issues — Boyuncms@1.4 CVE List

Lucene search

Boyuncms ProjectBoyuncms1.4

4 matches found

CVE•added 2025/07/07 1:15 a.m.•10 views

CVE-2025-7100

A vulnerability was found in BoyunCMS up to 1.4.20 and classified as critical. Affected by this issue is some unknown functionality of the file /application/user/controller/Index.php. The manipulation of the argument image leads to unrestricted upload. The attack may be launched remotely. The explo...

9.8CVSS6.4AI score0.00052EPSS

Web

CVE•added 2025/07/07 1:15 a.m.•10 views

CVE-2025-7101

A vulnerability was found in BoyunCMS up to 1.4.20. It has been classified as critical. This affects an unknown part of the file /install/install_ok.php of the component Configuration File Handler. The manipulation of the argument db_pass leads to code injection. It is possible to initiate the atta...

9.8CVSS6.8AI score0.0006EPSS

Web

CVE•added 2025/07/07 1:15 a.m.•10 views

CVE-2025-7102

A vulnerability was found in BoyunCMS up to 1.4.20. It has been declared as critical. This vulnerability affects unknown code of the file application/update/controller/Server.php. The manipulation of the argument phone leads to sql injection. The attack can be initiated remotely. The exploit has be...

9.8CVSS6.8AI score0.00039EPSS

Web

CVE•added 2025/07/07 2:15 a.m.•10 views

CVE-2025-7103

A vulnerability was found in BoyunCMS up to 1.4.20. It has been rated as critical. This issue affects some unknown processing of the file /application/pay/controller/Index.php of the component curl. The manipulation leads to server-side request forgery. The attack may be initiated remotely. The exp...

7.5CVSS6.5AI score0.00044EPSS