kk98kk0/exploit

Releases0

Stars3

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2020-18746 ↗	Aug 18, 2021Wednesday, 18 August 2021, 15:15	7.2 HIGH	6.5 MEDIUM
SQL Injection in AiteCMS v1.0 allows remote attackers to execute arbitrary code via the component "aitecms/login/diy_list.php".
CVE-2021-37358 ↗	Aug 18, 2021Wednesday, 18 August 2021, 15:15	9.8 CRITICAL	7.5 HIGH
SQL Injection in SEACMS v210530 (2021-05-30) allows remote attackers to execute arbitrary code via the component "admin_ajax.php?action=checkrepeat&v_name=".
CVE-2021-36601 ↗	Aug 10, 2021Tuesday, 10 August 2021, 15:15	6.1 MEDIUM	4.3 MEDIUM
GetSimpleCMS 3.3.16 contains a cross-site Scripting (XSS) vulnerability, where Function TSL does not filter check settings.php Website URL: "siteURL" parameter.
CVE-2019-6707 ↗	Jan 23, 2019Wednesday, 23 January 2019, 19:29	—	6.5 MEDIUM
PHPSHE 1.7 has SQL injection via the admin.php?mod=product&act=state product_id[] parameter.
CVE-2019-6708 ↗	Jan 23, 2019Wednesday, 23 January 2019, 19:29	—	6.5 MEDIUM
PHPSHE 1.7 has SQL injection via the admin.php?mod=order state parameter.