Search Results (366284 CVEs found)

CVE Vendors Products Updated CVSS v3.1
CVE-2022-29682 1 Chshcms 1 Cscms Music Portal System 2024-11-21 7.2 High
CSCMS Music Portal System v4.2 was discovered to contain a blind SQL injection vulnerability via the id parameter at /admin.php/vod/admin/topic/del.
CVE-2022-29681 1 Chshcms 1 Cscms Music Portal System 2024-11-21 7.2 High
CSCMS Music Portal System v4.2 was discovered to contain a blind SQL injection vulnerability via the id parameter at /admin.php/Links/del.
CVE-2022-29680 1 Chshcms 1 Cscms Music Portal System 2024-11-21 7.2 High
CSCMS Music Portal System v4.2 was discovered to contain a blind SQL injection vulnerability via the id parameter at /admin.php/user/zu_del.
CVE-2022-29676 1 Chshcms 1 Cscms Music Portal System 2024-11-21 7.2 High
CSCMS Music Portal System v4.2 was discovered to contain a SQL injection vulnerability via the id parameter at /admin.php/pic/admin/lists/zhuan.
CVE-2022-29670 1 Chshcms 1 Cscms Music Portal System 2024-11-21 7.2 High
CSCMS Music Portal System v4.2 was discovered to contain a SQL injection vulnerability via the id parameter at /admin.php/pic/admin/type/del.
CVE-2022-29669 1 Chshcms 1 Cscms Music Portal System 2024-11-21 8.8 High
CSCMS Music Portal System v4.2 was discovered to contain a SQL injection vulnerability via the id parameter at /admin.php/news/admin/lists/zhuan.
CVE-2022-29667 1 Chshcms 1 Cscms Music Portal System 2024-11-21 8.8 High
CSCMS Music Portal System v4.2 was discovered to contain a SQL injection vulnerability via /admin.php/pic/admin/pic/hy. This vulnerability is exploited via restoring deleted photos.
CVE-2022-29666 1 Chshcms 1 Cscms Music Portal System 2024-11-21 7.2 High
CSCMS Music Portal System v4.2 was discovered to contain a SQL injection vulnerability via the id parameter at /admin.php/pic/admin/lists/zhuan.
CVE-2022-29665 1 Chshcms 1 Cscms Music Portal System 2024-11-21 7.2 High
CSCMS Music Portal System v4.2 was discovered to contain a SQL injection vulnerability via the id parameter at /admin.php/news/admin/topic/save.
CVE-2022-29664 1 Chshcms 1 Cscms Music Portal System 2024-11-21 8.8 High
CSCMS Music Portal System v4.2 was discovered to contain a SQL injection vulnerability via the id parameter at /admin.php/pic/admin/type/pl_save.
CVE-2022-29663 1 Chshcms 1 Cscms Music Portal System 2024-11-21 7.2 High
CSCMS Music Portal System v4.2 was discovered to contain a SQL injection vulnerability via the id parameter at /admin.php/pic/admin/type/hy.
CVE-2022-29662 1 Chshcms 1 Cscms Music Portal System 2024-11-21 7.2 High
CSCMS Music Portal System v4.2 was discovered to contain a SQL injection vulnerability via the id parameter at /admin.php/news/admin/news/save.
CVE-2022-29661 1 Chshcms 1 Cscms Music Portal System 2024-11-21 7.2 High
CSCMS Music Portal System v4.2 was discovered to contain a blind SQL injection vulnerability via the id parameter at /admin.php/pic/admin/type/save.
CVE-2022-29660 1 Chshcms 1 Cscms Music Portal System 2024-11-21 9.8 Critical
CSCMS Music Portal System v4.2 was discovered to contain a SQL injection vulnerability via the id parameter at /admin.php/pic/admin/pic/del.
CVE-2022-29659 1 Responsive Online Blog Project 1 Responsive Online Blog 2024-11-21 9.8 Critical
Responsive Online Blog v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at single.php.
CVE-2022-29656 1 Wedding Management System Project 1 Wedding Management System 2024-11-21 9.8 Critical
Wedding Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /Wedding-Management/package_detail.php.
CVE-2022-29655 1 Wedding Management System Project 1 Wedding Management System 2024-11-21 7.2 High
An arbitrary file upload vulnerability in the Upload Photos module of Wedding Management System v1.0 allows attackers to execute arbitrary code via a crafted PHP file.
CVE-2022-29654 1 Nasm 1 Netwide Assembler 2024-11-21 5.5 Medium
Buffer overflow vulnerability in quote_for_pmake in asm/nasm.c in nasm before 2.15.05 allows attackers to cause a denial of service via crafted file.
CVE-2022-29653 1 Ofcms Project 1 Ofcms 2024-11-21 6.1 Medium
OFCMS v1.1.4 was discovered to contain a cross-site scripting (XSS) vulnerability via the component /admin/comn/service/update.json.
CVE-2022-29652 1 Online Sports Complex Booking System Project 1 Online Sports Complex Booking System 2024-11-21 6.1 Medium
Online Sports Complex Booking System 1.0 is vulnerable to SQL Injection via /scbs/classes/Users.php?f=save_client.