VYPR
Vendor

Boyuncms Project

Products
1
CVEs
5
Across products
5
Status
Private

Products

1

Recent CVEs

5
  • CVE-2025-7103MedJul 7, 2025
    risk 0.41cvss 6.3epss 0.00

    A vulnerability was found in BoyunCMS up to 1.4.20. It has been rated as critical. This issue affects some unknown processing of the file /application/pay/controller/Index.php of the component curl. The manipulation leads to server-side request forgery. The attack may be…

  • CVE-2025-7102MedJul 7, 2025
    risk 0.41cvss 6.3epss 0.00

    A vulnerability was found in BoyunCMS up to 1.4.20. It has been declared as critical. This vulnerability affects unknown code of the file application/update/controller/Server.php. The manipulation of the argument phone leads to sql injection. The attack can be initiated…

  • CVE-2025-7101MedJul 7, 2025
    risk 0.41cvss 6.3epss 0.00

    A vulnerability was found in BoyunCMS up to 1.4.20. It has been classified as critical. This affects an unknown part of the file /install/install_ok.php of the component Configuration File Handler. The manipulation of the argument db_pass leads to code injection. It is possible…

  • CVE-2025-7100MedJul 7, 2025
    risk 0.41cvss 6.3epss 0.00

    A vulnerability was found in BoyunCMS up to 1.4.20 and classified as critical. Affected by this issue is some unknown functionality of the file /application/user/controller/Index.php. The manipulation of the argument image leads to unrestricted upload. The attack may be launched…

  • CVE-2025-7099MedJul 7, 2025
    risk 0.36cvss 5.6epss 0.00

    A vulnerability has been found in BoyunCMS up to 1.21 on PHP7 and classified as critical. Affected by this vulnerability is an unknown functionality of the file install/install2.php of the component Installation Handler. The manipulation of the argument db_host leads to…