Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
bluecms project bluecms 1.6 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2022-37111
BlueCMS 1.6 has SQL injection in line 132 of admin/article.php
Bluecms Project Bluecms 1.6
NA
CVE-2022-37112
BlueCMS 1.6 has SQL injection in line 55 of admin/model.php
Bluecms Project Bluecms 1.6
NA
CVE-2022-37113
Bluecms 1.6 has SQL injection in line 132 of admin/area.php
Bluecms Project Bluecms 1.6
7.5
CVSSv2
CVE-2020-19853
BlueCMS v1.6 contains a SQL injection vulnerability via /ad_js.php.
Bluecms Project Bluecms 1.6
7.5
CVSSv2
CVE-2019-10262
A SQL Injection issue exists in BlueCMS 1.6. The variable $ad_id is spliced directly in uploads/admin/ad.php in the admin folder, and is not wrapped in single quotes, resulting in injection around the escape of magic quotes.
Bluecms Project Bluecms 1.6
NA
CVE-2023-33734
BlueCMS v1.6 exists to contain a SQL injection vulnerability via the keywords parameter at search.php.
Bluecms Project Bluecms 1.6
7.5
CVSSv2
CVE-2010-4897
SQL injection vulnerability in comment.php in BlueCMS 1.6 allows remote malicious users to execute arbitrary SQL commands via the X-Forwarded-For HTTP header in a send action.
Bluecms Project Bluecms 1.6
7.5
CVSSv2
CVE-2019-9594
BlueCMS 1.6 allows SQL Injection via the user_id parameter in an uploads/admin/user.php?act=edit request.
Bluecms Project Bluecms 1.6
7.5
CVSSv2
CVE-2022-27962
Bluecms 1.6 has a SQL injection vulnerability at cooike.
Bluecms Project Bluecms 1.6
7.5
CVSSv2
CVE-2018-16432
BlueCMS 1.6 allows SQL Injection via the user_name parameter to uploads/user.php?act=index_login.
Bluecms Project Bluecms 1.6
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started