Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
s-cms vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2023-7189
A vulnerability classified as critical was found in S-CMS up to 2.0_build20220529-20231006. Affected by this vulnerability is an unknown functionality of the file /s/index.php?action=statistics. The manipulation of the argument lid leads to sql injection. The exploit has been dis...
S-cms S-cms 1.0
S-cms S-cms 1.5
S-cms S-cms 2.0
NA
CVE-2023-7190
A vulnerability, which was classified as critical, has been found in S-CMS up to 2.0_build20220529-20231006. Affected by this issue is some unknown functionality of the file /member/ad.php?action=ad. The manipulation of the argument A_text/A_url/A_contact leads to sql injection. ...
S-cms S-cms 1.0
S-cms S-cms 1.5
S-cms S-cms 2.0
NA
CVE-2023-7191
A vulnerability, which was classified as critical, was found in S-CMS up to 2.0_build20220529-20231006. This affects an unknown part of the file member/reg.php. The manipulation of the argument M_login/M_email leads to sql injection. The exploit has been disclosed to the public a...
S-cms S-cms 1.0
S-cms S-cms 1.5
S-cms S-cms 2.0
668
VMScore
CVE-2018-20477
An issue exists in S-CMS 3.0. It allows SQL Injection via the bank/callback1.php P_no field.
S-cms S-cms 3.0
445
VMScore
CVE-2018-20478
An issue exists in S-CMS 1.0. It allows reading certain files, such as PHP source code, via the admin/download.php DownName parameter with a mixed-case extension, as demonstrated by a DownName=download.Php value.
S-cms S-cms 1.0
668
VMScore
CVE-2018-20479
An issue exists in S-CMS 1.0. It allows SQL Injection via the wap_index.php?type=newsinfo S_id parameter.
S-cms S-cms 1.0
668
VMScore
CVE-2022-23336
S-CMS v5.0 exists to contain a SQL injection vulnerability in member_pay.php via the O_id parameter.
S-cms S-cms 5.0
NA
CVE-2023-51048
S-CMS v5.0 exists to contain a SQL injection vulnerability via the A_newsauth parameter at /admin/ajax.php.
S-cms S-cms 5.0
NA
CVE-2023-51049
S-CMS v5.0 exists to contain a SQL injection vulnerability via the A_bbsauth parameter at /admin/ajax.php.
S-cms S-cms 5.0
NA
CVE-2023-51050
S-CMS v5.0 exists to contain a SQL injection vulnerability via the A_productauth parameter at /admin/ajax.php.
S-cms S-cms 5.0
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48700
CVE-2022-48689
CVE-2024-27956
CVE-2023-6363
SQL
NULL pointer dereference
CVE-2023-41830
CVE-2015-2051
arbitrary
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »