Concrete5 versions 8.5.5 suffer from a logging settings phar deserialization vulnerability. User input passed through the logFile request parameter is not properly sanitized before being used in a call to the file_exists() function at line 91. This can be exploited by malicious users to inject arbitrary PHP objects into the application scope (PHP Object Injection via phar:// stream wrapper), allowing them to carry out a variety of attacks, such as executing arbitrary PHP code. Successful exploitation of this vulnerability requires an administrator account.
4737c6d7d22010e52296503aaa366abc55f04d975b7b1fd092c8c80e1a164e8aIPS Community Suite versions 4.5.4.2 and below suffer from a PHP code injection vulnerability. The vulnerability exists because the IPS\cms\modules\front\pages\_builder::previewBlock() method allows to pass arbitrary content to the IPS\_Theme::runProcessFunction() method, which will be used in a call to the eval() PHP function. This can be exploited to inject and execute arbitrary PHP code. Successful exploitation of this vulnerability requires an account with permission to manage the sidebar (such as a Moderator or Administrator) and the "cms" application to be enabled.
392b40ad40c330e4deb04c99f4ff988666d96d0c4e3c606a17ec99241047911aExpressionEngine versions 6.0.2 and below suffer from a Translate::save PHP code injection vulnerability.
194597ced97a35c6d247729d6a66efa739186e83e8e19c865571433ee7b78ee3docsify versions 4.11.6 and below suffer from a cross site scripting vulnerability. This vulnerability exists due to an incomplete fix for CVE-2020-7680.
660d129dcc87aa67615bb840ba7c6f92bff103f112e67bbd1690a0f2d2193057IPS Community Suite versions 4.5.4 and below suffer from a remote SQL injection vulnerability in the Downloads REST API.
91f17358440b97a2cdf9126200c78d2bfdc16a8200647806ddf3ac379ef0d629qdPM versions 9.1 and below suffer from an executeExport PHP object injection vulnerability.
b112518046e2d985fa9df4e1d428c12274ab5e4bf070ee7383978e0a73695f45SugarCRM versions prior to 10.1.10 suffer from a remote SQL injection vulnerability.
dcd6f8e1b431c4d591d3fca6cf750508720c3bcb8fd317bf29a73f62c5ce15b8SugarCRM versions prior to 10.1.10 suffer from multiple cross site scripting vulnerabilities.
3b4dd8343f28746f3b059b1453af1a6567db0f415690776d8a7b2d7da1d2f3d9This Metasploit module exploits multiple vulnerabilities in openSIS 7.4 and prior versions which could be abused by unauthenticated attackers to execute arbitrary PHP code with the permissions of the webserver. The exploit chain abuses an incorrect access control issue which allows access to scripts which should require the user to be authenticated, and a local file inclusion to reach a SQL injection vulnerability which results in execution of arbitrary PHP code due to an unsafe use of the eval() function.
942c0ce311ce709dd7c1790955789b1f88040cee422935d166bdf0e150147703openSIS versions 7.4 and below suffer from multiple remote SQL injection vulnerabilities.
400d9b74c5924b238ccb88c1968e13b4640183baf55f44521ab902c275f4c1d9openSIS versions 7.4 and below suffer from a local file inclusion vulnerability.
e7161d7a2b2b5f3b74f9ce9373cde1c623bb264344142c67862680b20c2bfee5openSIS versions 7.4 and below suffer from an access bypass vulnerability.
de18d17ff15947139e2907c1c51bf51af6d549555d04403c26002b9a0c85a3afSuiteCRM versions 7.11.10 and below suffer from multiple remote SQL injection vulnerabilities.
6d0664ee294d9c0e355362341a51a1fb0526746a2bbe5d841ef37520620739c4SuiteCRM versions 7.11.11 and below suffer from an add_to_prospect_list broken access control that allows for local file inclusion attacks.
bf17496e890701853063b6c0ff76d7e4c10126a589c0ff3f257def2dcf623ee6SuiteCRM versions 7.11.11 and below suffer from an action_saveHTMLField bean manipulation vulnerability.
2180571bb1e2260ae7306d067b16cfbedbc9933b8f3852afefaabda12b8e98f8SuiteCRM versions 7.11.11 and below suffer from multiple phar deserialization vulnerabilities.
6635b4d98132797e97d5f7beb1446ac64f1d1b045f58dd11a4416288eebcbc03SuiteCRM versions 7.11.11 and below suffer from a second-order php object injection vulnerability.
0b39b583ac4c6a3f164f129018fb829ea101106ca187de455b16329ca19a3403YouPHPTube versions 7.7 and below suffer from a remote SQL injection vulnerability in getChat.json.php.
5d71aceec19133413eee8c6f4b44fc22997703a0b913eb7cb5f88539b50f03f1SugarCRM versions 9.0.1 and below suffer from multiple phar deserialization vulnerabilities.
711e401e10751d14106c7d0d10801ee4abc8af0fdc7d9ced190af9f40bd8b2b6SugarCRM versions 9.0.1 and below suffer from multiple php object injection vulnerabilities.
8b88a90be7bc1e1c4d2e0999a7bd3ac7433d507d003d7ab451000a265ee5a8dbSugarCRM versions 9.0.1 and below suffer from multiple PHP code injection vulnerabilities.
a44f4aa037e7f6f71dae59ddf084cc790b41aec26db1e5cb2276c9899d5f3f18SugarCRM versions 9.0.1 and below suffer from multiple path traversal vulnerabilities.
3525297b98fb37dc9912e4d971124d2afa1976184ef8b457ef67fd625ff6ffffSugarCRM versions 9.0.1 and below suffer from multiple broken access control vulnerabilities.
0dd2fbd4789141e84c8bccb263858c18a97a038f7954176c5e7ff6eb99106ea1SugarCRM versions 9.0.1 and below suffer from multiple remote SQL injection vulnerabilities.
665f2aca10cf90f64b8d1dca58fcf3fcff93c552f7bd30b7836cdb1c6c4b2267SugarCRM versions 9.0.1 and below suffer from multiple reflective cross site scripting vulnerabilities.
7d09c62859ee6df54d6c301681c3cf8c05bd10fec1feda4693b0c5f024b83971
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed