Vulnerabilities > Pbootcms > Pbootcms > 1.2.1

DATE CVE VULNERABILITY TITLE RISK
2024-12-19 CVE-2024-12793 Path Traversal vulnerability in Pbootcms
A vulnerability, which was classified as problematic, has been found in PbootCMS up to 5.2.3.
network
low complexity
pbootcms CWE-22
4.3
4.3
2024-12-19 CVE-2024-12789 Code Injection vulnerability in Pbootcms
A vulnerability was found in PbootCMS up to 3.2.3.
network
low complexity
pbootcms CWE-94
critical
 9.8
9.8
2023-08-24 CVE-2023-39834 Command Injection vulnerability in Pbootcms
PbootCMS below v3.2.0 was discovered to contain a command injection vulnerability via create_function.
network
low complexity
pbootcms CWE-77
critical
 9.8
9.8
2018-12-06 CVE-2018-19893 SQL Injection vulnerability in Pbootcms 1.2.1
SearchController.php in PbootCMS 1.2.1 has SQL injection via the index.php/Search/index.html query string.
network
low complexity
pbootcms CWE-89
critical
 9.8
9.8
2018-10-17 CVE-2018-18450 SQL Injection vulnerability in Pbootcms
apps\admin\controller\content\SingleController.php in PbootCMS before V1.3.0 build 2018-11-12 has SQL Injection, as demonstrated by the POST data to the admin.php/Single/mod/mcode/1/id/3 URI.
network
low complexity
pbootcms CWE-89
critical
 9.8
9.8
2018-10-10 CVE-2018-18211 SQL Injection vulnerability in Pbootcms 1.2.1
PbootCMS 1.2.1 has SQL injection via the HTTP POST data to the api.php/cms/addform?fcode=1 URI.
network
high complexity
pbootcms CWE-89
8.1
8.1