Vulnerabilities > Pbootcms > Pbootcms > 3.0.5

DATE CVE VULNERABILITY TITLE RISK
2023-08-24 CVE-2023-39834 Command Injection vulnerability in Pbootcms
PbootCMS below v3.2.0 was discovered to contain a command injection vulnerability via create_function.
network
low complexity
pbootcms CWE-77
critical
 9.8
9.8
2023-02-03 CVE-2021-37497 SQL Injection vulnerability in Pbootcms 3.0.5
SQL injection vulnerability in route of PbootCMS 3.0.5 allows remote attackers to run arbitrary SQL commands via crafted GET request.
network
low complexity
pbootcms CWE-89
critical
 9.8
9.8