Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
bluecms vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2018-16432
BlueCMS 1.6 allows SQL Injection via the user_name parameter to uploads/user.php?act=index_login.
Bluecms Project Bluecms 1.6
9.8
CVSSv3
CVE-2019-10262
A SQL Injection issue exists in BlueCMS 1.6. The variable $ad_id is spliced directly in uploads/admin/ad.php in the admin folder, and is not wrapped in single quotes, resulting in injection around the escape of magic quotes.
Bluecms Project Bluecms 1.6
NA
CVE-2010-4897
SQL injection vulnerability in comment.php in BlueCMS 1.6 allows remote malicious users to execute arbitrary SQL commands via the X-Forwarded-For HTTP header in a send action.
Bluecms Project Bluecms 1.6
9.8
CVSSv3
CVE-2022-37111
BlueCMS 1.6 has SQL injection in line 132 of admin/article.php
Bluecms Project Bluecms 1.6
9.8
CVSSv3
CVE-2022-37112
BlueCMS 1.6 has SQL injection in line 55 of admin/model.php
Bluecms Project Bluecms 1.6
9.8
CVSSv3
CVE-2022-37113
Bluecms 1.6 has SQL injection in line 132 of admin/area.php
Bluecms Project Bluecms 1.6
9.8
CVSSv3
CVE-2022-27962
Bluecms 1.6 has a SQL injection vulnerability at cooike.
Bluecms Project Bluecms 1.6
9.8
CVSSv3
CVE-2023-33734
BlueCMS v1.6 exists to contain a SQL injection vulnerability via the keywords parameter at search.php.
Bluecms Project Bluecms 1.6
9.8
CVSSv3
CVE-2019-9594
BlueCMS 1.6 allows SQL Injection via the user_id parameter in an uploads/admin/user.php?act=edit request.
Bluecms Project Bluecms 1.6
9.8
CVSSv3
CVE-2020-19853
BlueCMS v1.6 contains a SQL injection vulnerability via /ad_js.php.
Bluecms Project Bluecms 1.6
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-17519
open redirect
CVE-2024-21683
cache poisoning
CVE-2021-47524
CVE-2021-47521
CVE-2024-5229
CVE-2021-47560
local
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started