📦 Thinkphp
by Thinkphp
🔍 What is Thinkphp?
Description coming soon...
🛡️ Security Overview
Click on a severity to filter vulnerabilities
⚠️ Known Vulnerabilities
A remote code execution vulnerability exists in ThinkPHP 5.0.24's template file driver. Attackers can exploit the read function in File.php to execute arbitrary code on affected systems. This affects ...
This vulnerability in ThinkPHP v5.1 allows remote attackers to execute arbitrary code via the routecheck function due to improper input validation. It affects all systems running vulnerable versions o...
A deserialization vulnerability in ThinkPHP versions 6.1.3 through 8.0.4 allows attackers to execute arbitrary code by sending specially crafted requests. This affects all applications using vulnerabl...
This CVE describes a deserialization vulnerability in ThinkPHP framework that allows attackers to execute arbitrary code on affected systems. Attackers can exploit this by sending specially crafted pa...
This SQL injection vulnerability in ThinkPHP5 allows attackers to execute arbitrary SQL commands through the parseOrder function. It affects all ThinkPHP5 applications using versions 5.0.x through 5.1...
ThinkPHP v6.0.8 contains a deserialization vulnerability in the Flysystem cached adapter component that allows remote code execution. Attackers can exploit this by sending specially crafted requests t...
This CVE describes a SQL injection vulnerability in ThinkPHP v3.2.3 and earlier versions. Attackers can exploit improper input validation in the 'where' and 'query' methods to execute arbitrary SQL co...
This vulnerability in ThinkPHP 5.0.24 allows attackers to read arbitrary files on the server through crafted template values. It affects any application using the vulnerable version of ThinkPHP's temp...
This vulnerability allows remote attackers to execute arbitrary code through insecure deserialization in the topthink/framework PHP package. It affects all applications using versions before 6.0.12 of...
This is a Remote Code Execution vulnerability in ThinkPHP 3.x.x that allows attackers to execute arbitrary code on affected servers by manipulating the value[_filename] parameter in index.php. It affe...