kikulo/DebugOpen

kikulo/DebugOpen

Unavailable

This project is no longer available (or publicly accessible) from GitHub

Releases0

Debug

Log in to subscribe

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2019-14266 ↗	Jul 25, 2019Thursday, 25 July 2019, 16:15	—	6.5 MEDIUM
OpenSNS v6.1.0 allows SQL Injection via the index.php?s=/ucenter/Config/ uid parameter because of the getNeedQueryData function in Application/Common/Model/UserModel.class.php.
CVE-2019-11567 ↗	Apr 27, 2019Saturday, 27 April 2019, 14:29	—	6.5 MEDIUM
An issue was discovered in AikCms v2.0. There is a SQL Injection vulnerability via $_GET['del'], as demonstrated by an admin/page/system/nav.php?del= URI.
CVE-2019-11568 ↗	Apr 27, 2019Saturday, 27 April 2019, 14:29	—	6.8 MEDIUM
An issue was discovered in AikCms v2.0. There is a File upload vulnerability, as demonstrated by an admin/page/system/nav.php request with PHP code in a .php file with the application/octet-stream content type.
CVE-2019-11518 ↗	Apr 25, 2019Thursday, 25 April 2019, 13:29	—	6.5 MEDIUM
An issue was discovered in SEMCMS 3.8. SEMCMS_Inquiry.php allows AID[] SQL Injection because the class.phpmailer.php inject_check_sql protection mechanism is incomplete.
CVE-2019-11452 ↗	Apr 22, 2019Monday, 22 April 2019, 15:29	—	6.5 MEDIUM
whatsns 4.0 allows index.php?admin_category/remove.html cid[] SQL injection.
CVE-2019-11450 ↗	Apr 22, 2019Monday, 22 April 2019, 15:29	—	7.5 HIGH
whatsns 4.0 allows index.php?question/ajaxadd.html title SQL injection.
CVE-2019-11451 ↗	Apr 22, 2019Monday, 22 April 2019, 15:29	—	6.5 MEDIUM
whatsns 4.0 allows index.php?inform/add.html qid SQL injection.