Filtered by vendor Usualtool
Subscriptions
Filtered by product Usualtoolcms
Subscriptions
Total
3 CVE
CVE | Vendors | Products | Updated | CVSS v3.1 |
---|---|---|---|---|
CVE-2018-20128 | 1 Usualtool | 1 Usualtoolcms | 2024-08-05 | N/A |
An issue was discovered in UsualToolCMS v8.0. cmsadmin\a_sqlback.php allows remote attackers to delete arbitrary files via a backname[] directory-traversal pathname followed by a crafted substring. | ||||
CVE-2018-18422 | 1 Usualtool | 1 Usualtoolcms | 2024-08-05 | N/A |
UsualToolCMS 8.0 allows CSRF for adding a user account via the cmsadmin/a_adminx.php?x=a URI. | ||||
CVE-2019-6244 | 1 Usualtool | 1 Usualtoolcms | 2024-08-04 | N/A |
An issue was discovered in UsualToolCMS 8.0. cmsadmin/a_sqlbackx.php?t=sql allows CSRF attacks that can execute SQL statements, and consequently execute arbitrary PHP code by writing that code into a .php file. |
Page 1 of 1.