Security
Headlines
HeadlinesLatestCVEs

Tag

#php

Allhandsmarketing CMS 3.01 SQL Injection

Allhandsmarketing CMS version 3.01 suffers from a remote SQL injection vulnerability.

Packet Storm
Open in Source
#sql#vulnerability#windows#google#php#auth#firefox
Car Rental Script 1.8 Cross Site Scripting

Car Rental Script version 1.8 suffers from a cross site scripting vulnerability.

Allhandsmarketing LMS 2.0 Cross Site Request Forgery

Allhandsmarketing LMS version 2.0 suffers from a cross site request forgery vulnerability.

Advanced HRM 1.6 Insecure Direct Object Reference

Advanced HRM version 1.6 allows for the reseting of the administrative password.

Aathesh Soft CMS 0.3.0 Cross Site Scripting

Aathesh Soft CMS version 0.3.0 suffers from a cross site scripting vulnerability.

Ariadna CMS 0.3 Cross Site Scripting

Ariadna CMS version 0.3 suffers from a cross site scripting vulnerability.

CVE-2020-22153: Code execution in navigation/upload · Issue #553 · daylightstudio/FUEL-CMS

File Upload vulnerability in FUEL-CMS v.1.4.6 allows a remote attacker to execute arbitrary code via a crafted .php file to the upload parameter in the navigation function.

CVE-2023-36162: ZZCMS-2023 has a CSRF vulnerability · Issue #6 · forget-code/zzcms

Cross Site Request Forgery vulnerability in ZZCMS v.2023 alows a remote attacker to gain privileges via the add function in adminlist.php.

Anuranan SBAdmin 2.0 SQL Injection

Anuranan SBAdmin version 2.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.