Chshcms

chshcms

53 CVEs • 3 products

Products (3)

Click to collapse

Toggle

Cscms

cscms

21 CVEs

Cscms Music Portal System

cscms_music_portal_system

CVEs (53)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2022-29681 1Chshcms 1Cscms Music Portal System Nov 21, 2024 May 26, 2022 N/A· v4 7.2 HIGH· v3 6.5 MEDIUM· v2 CSCMS Music Portal System v4.2 was discovered to contain a blind SQL injection vulnerability via the id parameter at /admin.php/Links/del.
CVE-2022-29680 1Chshcms 1Cscms Music Portal System Nov 21, 2024 May 26, 2022 N/A· v4 7.2 HIGH· v3 6.5 MEDIUM· v2 CSCMS Music Portal System v4.2 was discovered to contain a blind SQL injection vulnerability via the id parameter at /admin.php/user/zu_del.
CVE-2022-29676 1Chshcms 1Cscms Music Portal System Nov 21, 2024 May 26, 2022 N/A· v4 7.2 HIGH· v3 6.5 MEDIUM· v2 CSCMS Music Portal System v4.2 was discovered to contain a SQL injection vulnerability via the id parameter at /admin.php/pic/admin/lists/zhuan.
CVE-2022-29670 1Chshcms 1Cscms Music Portal System Nov 21, 2024 May 26, 2022 N/A· v4 7.2 HIGH· v3 6.5 MEDIUM· v2 CSCMS Music Portal System v4.2 was discovered to contain a SQL injection vulnerability via the id parameter at /admin.php/pic/admin/type/del.
CVE-2022-29669 1Chshcms 1Cscms Music Portal System Nov 21, 2024 May 26, 2022 N/A· v4 8.8 HIGH· v3 6.5 MEDIUM· v2 CSCMS Music Portal System v4.2 was discovered to contain a SQL injection vulnerability via the id parameter at /admin.php/news/admin/lists/zhuan.
CVE-2022-29667 1Chshcms 1Cscms Music Portal System Nov 21, 2024 May 26, 2022 N/A· v4 8.8 HIGH· v3 6.5 MEDIUM· v2 CSCMS Music Portal System v4.2 was discovered to contain a SQL injection vulnerability via /admin.php/pic/admin/pic/hy. This vulnerability is exploited via restoring deleted photos.
CVE-2022-29666 1Chshcms 1Cscms Music Portal System Nov 21, 2024 May 26, 2022 N/A· v4 7.2 HIGH· v3 6.5 MEDIUM· v2 CSCMS Music Portal System v4.2 was discovered to contain a SQL injection vulnerability via the id parameter at /admin.php/pic/admin/lists/zhuan.
CVE-2022-29665 1Chshcms 1Cscms Music Portal System Nov 21, 2024 May 26, 2022 N/A· v4 7.2 HIGH· v3 6.5 MEDIUM· v2 CSCMS Music Portal System v4.2 was discovered to contain a SQL injection vulnerability via the id parameter at /admin.php/news/admin/topic/save.
CVE-2022-29664 1Chshcms 1Cscms Music Portal System Nov 21, 2024 May 26, 2022 N/A· v4 8.8 HIGH· v3 6.5 MEDIUM· v2 CSCMS Music Portal System v4.2 was discovered to contain a SQL injection vulnerability via the id parameter at /admin.php/pic/admin/type/pl_save.
CVE-2022-29663 1Chshcms 1Cscms Music Portal System Nov 21, 2024 May 26, 2022 N/A· v4 7.2 HIGH· v3 6.5 MEDIUM· v2 CSCMS Music Portal System v4.2 was discovered to contain a SQL injection vulnerability via the id parameter at /admin.php/pic/admin/type/hy.
CVE-2022-29662 1Chshcms 1Cscms Music Portal System Nov 21, 2024 May 26, 2022 N/A· v4 7.2 HIGH· v3 6.5 MEDIUM· v2 CSCMS Music Portal System v4.2 was discovered to contain a SQL injection vulnerability via the id parameter at /admin.php/news/admin/news/save.
CVE-2022-29661 1Chshcms 1Cscms Music Portal System Nov 21, 2024 May 26, 2022 N/A· v4 7.2 HIGH· v3 6.5 MEDIUM· v2 CSCMS Music Portal System v4.2 was discovered to contain a blind SQL injection vulnerability via the id parameter at /admin.php/pic/admin/type/save.
CVE-2022-29660 1Chshcms 1Cscms Music Portal System Nov 21, 2024 May 26, 2022 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 CSCMS Music Portal System v4.2 was discovered to contain a SQL injection vulnerability via the id parameter at /admin.php/pic/admin/pic/del.
CVE-2022-28552 1Chshcms 1Cscms Nov 21, 2024 May 4, 2022 N/A· v4 8.8 HIGH· v3 6.5 MEDIUM· v2 Cscms 4.1 is vulnerable to SQL Injection. Log into the background, open the song module, create a new song, delete it to the recycle bin, and SQL injection security problems will occur when emptying the recycle bin.
CVE-2022-27369 1Chshcms 1Cscms Nov 21, 2024 Apr 15, 2022 N/A· v4 7.2 HIGH· v3 6.5 MEDIUM· v2 Cscms Music Portal System v4.2 was discovered to contain a SQL injection vulnerability via the component news_News.php_hy.
CVE-2022-27368 1Chshcms 1Cscms Nov 21, 2024 Apr 15, 2022 N/A· v4 7.2 HIGH· v3 6.5 MEDIUM· v2 Cscms Music Portal System v4.2 was discovered to contain a SQL injection vulnerability via the component dance_Lists.php_zhuan.
CVE-2022-27367 1Chshcms 1Cscms Nov 21, 2024 Apr 15, 2022 N/A· v4 7.2 HIGH· v3 6.5 MEDIUM· v2 Cscms Music Portal System v4.2 was discovered to contain a SQL injection vulnerability via the component dance_Topic.php_del.
CVE-2022-27366 1Chshcms 1Cscms Nov 21, 2024 Apr 15, 2022 N/A· v4 7.2 HIGH· v3 6.5 MEDIUM· v2 Cscms Music Portal System v4.2 was discovered to contain a blind SQL injection vulnerability via the component dance_Dance.php_hy.
CVE-2022-27365 1Chshcms 1Cscms Nov 21, 2024 Apr 15, 2022 N/A· v4 7.2 HIGH· v3 6.5 MEDIUM· v2 Cscms Music Portal System v4.2 was discovered to contain a SQL injection vulnerability via the component dance_Dance.php_del.
CVE-2022-27090 1Chshcms 1Cscms Nov 21, 2024 Mar 21, 2022 N/A· v4 5.4 MEDIUM· v3 4.9 MEDIUM· v2 Cscms Music Portal System v4.2 was discovered to contain a redirection vulnerability via the backurl parameter.

Previous 123 Next