📦 Lmxcms

This SQL injection vulnerability in LMXCMS v1.4 allows attackers to execute arbitrary SQL commands through the TagsAction.class component. Attackers can potentially read, modify, or delete database co...

This vulnerability allows remote attackers to execute arbitrary code on systems running lmxcms v1.41 by sending crafted scripts to the admin.php file. This is a critical remote code execution vulnerab...

CVE-2023-29598 is a SQL injection vulnerability in lmxcms v1.4.1 that allows attackers to execute arbitrary SQL commands via the setbook parameter at index.php. This affects all users running the vuln...

This critical SQL injection vulnerability in LmxCMS 1.41 allows remote attackers to execute arbitrary SQL commands via the 'sortid' parameter in POST requests to the manageZt function. Attackers can p...

This vulnerability in lmxcms 1.41 allows remote attackers to inject malicious code through the db.inc.php file in the Maintenance component. The code injection could lead to arbitrary code execution o...