Vulnerabilities > Pbootcms > Pbootcms > 1.2.2
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2023-08-24 | CVE-2023-39834 | Command Injection vulnerability in Pbootcms PbootCMS below v3.2.0 was discovered to contain a command injection vulnerability via create_function. | 9.8 |
2018-11-07 | CVE-2018-19053 | Code Injection vulnerability in Pbootcms 1.2.2 PbootCMS 1.2.2 allows remote attackers to execute arbitrary PHP code by specifying a .php filename in a "SET GLOBAL general_log_file" statement, followed by a SELECT statement containing this PHP code. | 6.5 |
2018-10-17 | CVE-2018-18450 | SQL Injection vulnerability in Pbootcms apps\admin\controller\content\SingleController.php in PbootCMS before V1.3.0 build 2018-11-12 has SQL Injection, as demonstrated by the POST data to the admin.php/Single/mod/mcode/1/id/3 URI. | 7.5 |