cszcms
cszcms copied to clipboard
cskaza
Open Source CMS (Content Management System) with Codeigniter and Bootstrap.
Exploit Title: SQL Injection vulnerability on cszcms_admin_Plugin_manager_setstatus Date: 11-March-2022 Exploit Author: [@Limerence](https://github.com/xuehaobaobao) Software Link: https://github.com/cskaza/cszcms/archive/refs/tags/1.2.2.zip Version: 1.2.2 Description: SQL Injection allows an attacker to run malicious SQL statements on a...
Exploit Title: SQL Injection vulnerability on cszcms_admin_Users_viewUsers Date: 11-March-2022 Exploit Author: [@Limerence](https://github.com/xuehaobaobao) Software Link: https://github.com/cskaza/cszcms/archive/refs/tags/1.2.2.zip Version: 1.2.2 Description: SQL Injection allows an attacker to run malicious SQL statements on a...
Exploit Title: SQL Injection vulnerability on cszcms_admin_Members_editUser Date: 11-March-2022 Exploit Author: [@Limerence](https://github.com/xuehaobaobao) Software Link: https://github.com/cskaza/cszcms/archive/refs/tags/1.2.2.zip Version: 1.2.2 Description: SQL Injection allows an attacker to run malicious SQL statements on a...
Exploit Title: SQL Injection vulnerability on cszcms_admin_Users_editUser Date: 11-March-2022 Exploit Author: [@Limerence](https://github.com/xuehaobaobao) Software Link: https://github.com/cskaza/cszcms/archive/refs/tags/1.2.2.zip Version: 1.2.2 Description: SQL Injection allows an attacker to run malicious SQL statements on a...
Exploit Title: SQL Injection vulnerability on cszcms_admin_Members_viewUsers Date: 11-March-2022 Exploit Author: [@Limerence9](https://github.com/Limerence9) Software Link: https://github.com/cskaza/cszcms/archive/refs/tags/1.2.2.zip Version: 1.2.2 Description: SQL Injection allows an attacker to run malicious SQL statements on a...
* Vulnerability Name: SQL injection * Date of Discovery: 23/2/2022 * Product version: CSZ CMS 1.2.2 DownloadLink : https://github.com/cskaza/cszcms * Author: N1ce * Vulnerability Description: The application does not judge...
Hey there! I belong to an open source security research community, and a member (@faisalfs10x) has found an issue, but doesn’t know the best way to disclose it. If not...
Hi, I found a front-end sql injection vulnerability in cszcms-1.2.9 The vulnerable code is on `cszcms\controllers\Member.php#viewUser` The `$this->uri->segment(3)` parameter here can be controlled by the user  And no filtering...
Refused to apply style from 'http://localhost/cszcms/corecss.css' because its MIME type ('text/html') is not a supported stylesheet MIME type, and strict MIME checking is enabled. GET http://localhost/cszcms/corejs.js net::ERR_ABORTED 404 (Not Found)
I'm currently creating articles on the cms. How can I insert them into html? I didn't find any documentations for it. Propably I have to put into each div some...
