NotCVE - vendor:"Pbootcms" product:"Pbootcms" version:"3.0.4"

2 results (0.007 seconds)

CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 1

CVE-2023-39834

https://notcve.org/view.php?id=CVE-2023-39834

PbootCMS below v3.2.0 was discovered to contain a command injection vulnerability via create_function. • https://github.com/Pbootcms/Pbootcms/issues/8 • CWE-77: Improper Neutralization of Special Elements used in a Command ('Command Injection') •

CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 1

CVE-2021-28245

https://notcve.org/view.php?id=CVE-2021-28245

PbootCMS 3.0.4 contains a SQL injection vulnerability through index.php via the search parameter that can reveal sensitive information through adding an admin account. PbootCMS versión 3.0.4, contiene una vulnerabilidad de inyección SQL mediante el archivo index.php por medio del parámetro search que puede revelar información confidencial al agregar una cuenta de administrador. • https://github.com/M40k1n9/vulner/issues/1 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •