Show filters
2 Total Results
Displaying 1-2 of 2
Sort by:
Attacker Value
Unknown
CVE-2018-18084
Disclosure Date: October 09, 2018 (last updated November 27, 2024)
An issue was discovered in DuomiCMS 3.0. SQL injection exists in the ajax.php file, as demonstrated by the uid parameter.
0
Attacker Value
Unknown
CVE-2018-18083
Disclosure Date: October 09, 2018 (last updated November 27, 2024)
An issue was discovered in DuomiCMS 3.0. Remote PHP code execution is possible via the search.php searchword parameter because "eval" is used during "if" processing.
0
