📦 S Cms

S-CMS v5.0 contains a SQL injection vulnerability in the A_productauth parameter at /admin/ajax.php. This allows attackers to execute arbitrary SQL commands on the database. All systems running S-CMS ...

S-CMS v5.0 contains a SQL injection vulnerability in the A_formauth parameter at /admin/ajax.php that allows attackers to execute arbitrary SQL commands. This affects all installations of S-CMS v5.0, ...

S-CMS v5.0 contains a SQL injection vulnerability in the A_newsauth parameter at /admin/ajax.php that allows attackers to execute arbitrary SQL commands. This affects all installations of S-CMS v5.0, ...

S-CMS v5.0 contains a SQL injection vulnerability in the member_pay.php file through the O_id parameter. This allows attackers to execute arbitrary SQL commands on the database. Any organization using...

S-CMS v5.0 contains an authenticated remote code execution vulnerability in the /admin/ajax.php component. Attackers with admin credentials can execute arbitrary code on the server. This affects all S...

This vulnerability allows remote attackers to execute arbitrary code on S-CMS PHP v3.0 systems by modifying PHP files through the /1.com.php endpoint. It affects all deployments of S-CMS PHP v3.0 that...