Thinkphp Security Vulnerabilities and Issues — Thinkphp CVE List

Lucene search

ThinkphpThinkphp

24 matches found

CVE•added 2019/02/24 6:29 p.m.•1211 views

CVE-2019-9082

ThinkPHP before 3.2.4, as used in Open Source BMS v1.1.1 and other products, allows Remote Command Execution via public//?s=index/\think\app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]= followed by the command.

9.3CVSS8.7AI score0.94141EPSS

CVE•added 2022/12/23 9:15 p.m.•277 views

CVE-2022-47945

ThinkPHP Framework before 6.0.14 allows local file inclusion via the lang parameter when the language pack feature is enabled (lang_switch_on=true). An unauthenticated and remote attacker can exploit this to execute arbitrary operating system commands, as demonstrated by including pearcmd.php.

9.8CVSS9.4AI score0.89687EPSS

CVE•added 2022/03/21 12:15 a.m.•161 views

CVE-2022-25481

ThinkPHP Framework v5.0.24 was discovered to be configured without the PATHINFO parameter. This allows attackers to access all system environment parameters from index.php. NOTE: this is disputed by a third party because system environment exposure is an intended feature of the debugging mode.

7.5CVSS7.4AI score0.43981EPSS

CVE•added 2022/12/06 4:15 p.m.•129 views

CVE-2022-44289

Thinkphp 5.1.41 and 5.0.24 has a code logic error which causes file upload getshell.

8.8CVSS8.8AI score0.00099EPSS

CVE•added 2022/06/29 12:15 p.m.•107 views

CVE-2022-33107

ThinkPHP v6.0.12 was discovered to contain a deserialization vulnerability via the component vendor\league\flysystem-cached-adapter\src\Storage\AbstractCache.php. This vulnerability allows attackers to execute arbitrary code via a crafted payload.

9.8CVSS9.6AI score0.24573EPSS

CVE•added 2022/05/06 8:15 p.m.•96 views

CVE-2021-23592

The package topthink/framework before 6.0.12 are vulnerable to Deserialization of Untrusted Data due to insecure unserialize method in the Driver class.

9.8CVSS8.6AI score0.00957EPSS

CVE•added 2018/04/19 8:29 a.m.•92 views

CVE-2018-10225

thinkphp 3.1.3 has SQL Injection via the index.php s parameter.

9.8CVSS9.9AI score0.00264EPSS

CVE•added 2022/02/10 5:15 p.m.•86 views

CVE-2021-44892

A Remote Code Execution (RCE) vulnerability exists in ThinkPHP 3.x.x via value[_filename] in index.php, which could let a malicious user obtain server control privileges.

8.8CVSS8.8AI score0.01989EPSS

CVE•added 2022/09/15 2:15 a.m.•86 views

CVE-2022-38352

ThinkPHP v6.0.13 was discovered to contain a deserialization vulnerability via the component League\Flysystem\Cached\Storage\Psr6Cache. This vulnerability allows attackers to execute arbitrary code via a crafted payload.

9.8CVSS9.7AI score0.09819EPSS

CVE•added 2021/12/06 9:15 p.m.•65 views

CVE-2021-36564

ThinkPHP v6.0.8 was discovered to contain a deserialization vulnerability via the component vendor\league\flysystem-cached-adapter\src\Storage\Adapter.php.

9.8CVSS9.5AI score0.01097EPSS

CVE•added 2021/12/06 9:15 p.m.•62 views

CVE-2021-36567

ThinkPHP v6.0.8 was discovered to contain a deserialization vulnerability via the component League\Flysystem\Cached\Storage\AbstractCache.

10CVSS9.5AI score0.03362EPSS

CVE•added 2024/05/04 8:15 p.m.•59 views

CVE-2024-34467

ThinkPHP 8.0.3 allows remote attackers to exploit XSS due to inadequate filtering of function argument values in think_exception.tpl.

6.1CVSS5.8AI score0.00039EPSS

CVE•added 2021/09/28 11:15 p.m.•58 views

CVE-2020-20120

ThinkPHP v3.2.3 and below contains a SQL injection vulnerability which is triggered when the array is not passed to the "where" and "query" methods.

9.8CVSS9.7AI score0.01107EPSS

CVE•added 2021/12/15 11:15 p.m.•53 views

CVE-2021-44350

SQL Injection vulnerability exists in ThinkPHP5 5.0.x

9.8CVSS9.8AI score0.01031EPSS

CVE•added 2023/02/08 9:15 p.m.•52 views

CVE-2022-45982

thinkphp 6.0.0~6.0.13 and 6.1.0~6.1.1 contains a deserialization vulnerability. This vulnerability allows attackers to execute arbitrary code via a crafted payload.

9.8CVSS9.5AI score0.00972EPSS

CVE•added 2024/09/09 8:15 p.m.•48 views

CVE-2024-44902

A deserialization vulnerability in Thinkphp v6.1.3 to v8.0.4 allows attackers to execute arbitrary code.

9.8CVSS7.3AI score0.72642EPSS

CVE•added 2024/10/30 9:15 p.m.•46 views

CVE-2024-48112

A deserialization vulnerability in the component \controller\Index.php of Thinkphp v6.1.3 to v8.0.4 allows attackers to execute arbitrary code.

9.8CVSS7.7AI score0.01549EPSS

CVE•added 2018/09/26 9:29 p.m.•35 views

CVE-2018-17566

In ThinkPHP 5.1.24, the inner function delete can be used for SQL injection when its WHERE condition's value can be controlled by a user's request.

9.8CVSS9.8AI score0.00264EPSS

CVE•added 2018/10/19 8:29 p.m.•33 views

CVE-2018-18529

ThinkPHP 3.2.4 has SQL Injection via the count parameter because the Library/Think/Db/Driver/Mysql.class.php parseKey function mishandles the key variable. NOTE: a backquote character is not required in the attack URI.

9.8CVSS9.9AI score0.00264EPSS

CVE•added 2018/10/19 8:29 p.m.•33 views

CVE-2018-18530

ThinkPHP 5.1.25 has SQL Injection via the count parameter because the library/think/db/Query.php aggregate function mishandles the aggregate variable. NOTE: a backquote character is required in the attack URI.

9.8CVSS9.9AI score0.00264EPSS

CVE•added 2018/10/21 1:29 a.m.•33 views

CVE-2018-18546

ThinkPHP 3.2.4 has SQL Injection via the order parameter because the Library/Think/Db/Driver.class.php parseOrder function mishandles the key variable.

9.8CVSS9.9AI score0.0037EPSS

CVE•added 2018/09/03 2:29 a.m.•30 views

CVE-2018-16385

ThinkPHP before 5.1.23 allows SQL Injection via the public/index/index/test/index query string.

9.8CVSS9.9AI score0.00546EPSS

CVE•added 2025/08/05 3:15 p.m.•8 views

CVE-2025-50706

An issue in thinkphp v.5.1 allows a remote attacker to execute arbitrary code via the routecheck function

9.8CVSS7.6AI score0.00378EPSS

CVE•added 2025/08/05 3:15 p.m.•5 views

CVE-2025-50707

An issue in thinkphp3 v.3.2.5 allows a remote attacker to execute arbitrary code via the index.php component

9.8CVSS7.6AI score0.00378EPSS