Monthly Archive: May 2022

ShopWind

An authenticated user could execute code via a SQLi vulnerability in waimairenCMS before version 9.1. Date published : 2022-05-11 https://www.yuque.com/docs/share/6a504753-caa2-4b5e-95a7-a3e5f9485e44

A Remote Code Execution (RCE) vulnerability exists in waimairen 9.1 via wx.php Date published : 2022-05-11 https://www.yuque.com/docs/share/5e8fa3c7-6fcd-492f-9d7c-bdf9052dca44

Hospital Management System in PHP with Source Code (HMS) 1.0 was discovered to contain a SQL injection vulnerability via the editid parameter in room.php. Date published : 2022-05-11 https://www.yuque.com/docs/share/8d4fd0f4-671f-4ed0-893d-af8227cddf84

Hospital Management System in PHP with Source Code (HMS) 1.0 was discovered to contain a File upload vulnerability in treatmentrecord.php. Date published : 2022-05-11 https://www.yuque.com/docs/share/43407f5b-a831-4598-9648-5af9f780b12a

ftcms

ftcms

ftcms

ftcms

Shopwind

Shopwind

Shopwind

Mingsoft MCMS 5.2.7 was discovered to contain a SQL injection vulnerability in /mdiy/dict/list URI via orderBy parameter. Date published : 2022-05-11 https://gitee.com/mingSoft/MCMS/issues/I54VG0

Mingsoft MCMS v5.2.7 was discovered to contain a SQL injection vulnerability in /mdiy/dict/listExcludeApp URI via orderBy parameter. Date published : 2022-05-11 https://gitee.com/mingSoft/MCMS/issues/I54VLM