Search Results | AttackerKB

CSCMS Music Portal System v4.2 was discovered to contain a SQL injection vulnerability via /admin.php/pic/admin/pic/hy. This vulnerability is exploited via restoring deleted photos.

Attack Vector: Network Privileges: Low User Interaction: None

Attacker Value

Unknown

CVE-2022-29666

Disclosure Date: May 26, 2022 (last updated February 23, 2025)

CSCMS Music Portal System v4.2 was discovered to contain a SQL injection vulnerability via the id parameter at /admin.php/pic/admin/lists/zhuan.

Attack Vector: Network Privileges: High User Interaction: None

Attacker Value

Unknown

CVE-2022-29665

Disclosure Date: May 26, 2022 (last updated February 23, 2025)

CSCMS Music Portal System v4.2 was discovered to contain a SQL injection vulnerability via the id parameter at /admin.php/news/admin/topic/save.

Attack Vector: Network Privileges: High User Interaction: None

Attacker Value

Unknown

CVE-2022-29664

Disclosure Date: May 26, 2022 (last updated February 23, 2025)

CSCMS Music Portal System v4.2 was discovered to contain a SQL injection vulnerability via the id parameter at /admin.php/pic/admin/type/pl_save.

Attack Vector: Network Privileges: Low User Interaction: None

Attacker Value

Unknown

CVE-2022-29663

Disclosure Date: May 26, 2022 (last updated February 23, 2025)

CSCMS Music Portal System v4.2 was discovered to contain a SQL injection vulnerability via the id parameter at /admin.php/pic/admin/type/hy.

Attack Vector: Network Privileges: High User Interaction: None

Attacker Value

Unknown

CVE-2022-29662

Disclosure Date: May 26, 2022 (last updated February 23, 2025)

CSCMS Music Portal System v4.2 was discovered to contain a SQL injection vulnerability via the id parameter at /admin.php/news/admin/news/save.

Attack Vector: Network Privileges: High User Interaction: None

28 Total Results

Displaying 11-20 of 28

Unknown

Unknown

Unknown

Unknown

Unknown

Unknown

Unknown

Unknown

Unknown

Unknown

Quick Cookie Notification