S Cms
by S Cms
CVEs (9)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2023-29962 | 0.00 | — | 0.00 | Jan 4, 2024 | S-CMS v5.0 was discovered to contain an arbitrary file read vulnerability. | |||
| CVE-2023-51050 | 0.00 | — | 0.00 | Dec 21, 2023 | S-CMS v5.0 was discovered to contain a SQL injection vulnerability via the A_productauth parameter at /admin/ajax.php. | |||
| CVE-2023-51049 | 0.00 | — | 0.00 | Dec 21, 2023 | S-CMS v5.0 was discovered to contain a SQL injection vulnerability via the A_bbsauth parameter at /admin/ajax.php. | |||
| CVE-2023-51052 | 0.00 | — | 0.00 | Dec 21, 2023 | S-CMS v5.0 was discovered to contain a SQL injection vulnerability via the A_formauth parameter at /admin/ajax.php. | |||
| CVE-2023-51051 | 0.00 | — | 0.00 | Dec 21, 2023 | S-CMS v5.0 was discovered to contain a SQL injection vulnerability via the A_textauth parameter at /admin/ajax.php. | |||
| CVE-2023-51048 | 0.00 | — | 0.00 | Dec 21, 2023 | S-CMS v5.0 was discovered to contain a SQL injection vulnerability via the A_newsauth parameter at /admin/ajax.php. | |||
| CVE-2022-23336 | 0.00 | — | 0.00 | Feb 14, 2022 | S-CMS v5.0 was discovered to contain a SQL injection vulnerability in member_pay.php via the O_id parameter. | |||
| CVE-2019-6805 | 0.00 | — | 0.00 | Jan 25, 2019 | SQL Injection was found in S-CMS version V3.0 via the alipay/alipayapi.php O_id parameter. | |||
| CVE-2018-20018 | 0.00 | — | 0.00 | Dec 10, 2018 | S-CMS V3.0 has SQL injection via the S_id parameter, as demonstrated by the /1/?type=productinfo&S_id=140 URI. |
- CVE-2023-29962Jan 4, 2024risk 0.00cvss —epss 0.00
S-CMS v5.0 was discovered to contain an arbitrary file read vulnerability.
- CVE-2023-51050Dec 21, 2023risk 0.00cvss —epss 0.00
S-CMS v5.0 was discovered to contain a SQL injection vulnerability via the A_productauth parameter at /admin/ajax.php.
- CVE-2023-51049Dec 21, 2023risk 0.00cvss —epss 0.00
S-CMS v5.0 was discovered to contain a SQL injection vulnerability via the A_bbsauth parameter at /admin/ajax.php.
- CVE-2023-51052Dec 21, 2023risk 0.00cvss —epss 0.00
S-CMS v5.0 was discovered to contain a SQL injection vulnerability via the A_formauth parameter at /admin/ajax.php.
- CVE-2023-51051Dec 21, 2023risk 0.00cvss —epss 0.00
S-CMS v5.0 was discovered to contain a SQL injection vulnerability via the A_textauth parameter at /admin/ajax.php.
- CVE-2023-51048Dec 21, 2023risk 0.00cvss —epss 0.00
S-CMS v5.0 was discovered to contain a SQL injection vulnerability via the A_newsauth parameter at /admin/ajax.php.
- CVE-2022-23336Feb 14, 2022risk 0.00cvss —epss 0.00
S-CMS v5.0 was discovered to contain a SQL injection vulnerability in member_pay.php via the O_id parameter.
- CVE-2019-6805Jan 25, 2019risk 0.00cvss —epss 0.00
SQL Injection was found in S-CMS version V3.0 via the alipay/alipayapi.php O_id parameter.
- CVE-2018-20018Dec 10, 2018risk 0.00cvss —epss 0.00
S-CMS V3.0 has SQL injection via the S_id parameter, as demonstrated by the /1/?type=productinfo&S_id=140 URI.