Monthly Archive: June 2021

SQL Injection in 74cms 3.2.0 via the x parameter to ajax_officebuilding.php. Date published : 2021-06-16 https://github.com/blindkey/cve_like/issues/11

SQL Injection in 74cms 3.2.0 via the query parameter to plus/ajax_common.php. Date published : 2021-06-16 https://github.com/blindkey/cve_like/issues/12

SQL Injection in 74cms 3.2.0 via the x parameter to plus/ajax_street.php. Date published : 2021-06-16 https://github.com/blindkey/cve_like/issues/10

SQL Injection in ECShop 3.0 via the aid parameter to admin/affiliate_ck.php. Date published : 2021-06-16 https://github.com/blindkey/cve_like/issues/9

SQL Injection in ECShop 3.0 via the id parameter to admin/shophelp.php. Date published : 2021-06-16 https://github.com/blindkey/cve_like/issues/8

SQL Injection in ECShop 2.7.6 via the goods_number parameter to flow.php. . Date published : 2021-06-16 https://github.com/blindkey/cve_like/issues/7

SQL Injection in phpCMS 2008 sp4 via the genre parameter to yp/job.php. Date published : 2021-06-16 https://github.com/blindkey/cve_like/issues/6

phpCMS 2008 sp4 allowas remote malicious users to execute arbitrary php commands via the pagesize parameter to yp/product.php. Date published : 2021-06-16 https://github.com/blindkey/cve_like/issues/4

Directory Traversal vulnerability in phpCMS 9.1.13 via the q parameter to public_get_suggest_keyword. Date published : 2021-06-16 https://github.com/blindkey/cve_like/issues/2

SQL Injection vulnerability in phpCMS 2007 SP6 build 0805 via the digg_mod parameter to digg_add.php. Date published : 2021-06-16 https://github.com/blindkey/cve_like/issues/1

SQL Injection vulnerability in DedeCMS 5.7 via mdescription parameter to member/ajax_membergroup.php. Date published : 2021-06-16 http://www.hackdig.com/?02/hack-8391.htm https://github.com/blindkey/DedeCMSv5/issues/1

Jact OpenClinic 0.8.20160412 allows the attacker to read server files after login to the the admin account by an infected ‘file’ GET parameter in ‘/shared/view_source.php’ which "could" lead to RCE vulnerability . Date published...

An invalid pointer initialization issue was found in the SLiRP networking implementation of QEMU. The flaw exists in the tftp_input() function and could occur while processing a udp packet that is smaller than the...

An invalid pointer initialization issue was found in the SLiRP networking implementation of QEMU. The flaw exists in the udp_input() function and could occur while processing a udp packet that is smaller than the...