luocms project

Top products

The 10 most recently published vulnerabilities affecting luocms project.

• CVE-2022-24609Luocms v2.0 is affected by an incorrect access control vulnerability. Through /admin/templates/template_manage.php, an attacker can write an arbitrary shell file.9.8Mar 9, 2022
• CVE-2022-24608Luocms v2.0 is affected by Cross Site Scripting (XSS) in /admin/news/sort_add.php and /inc/function.php.6.1Mar 9, 2022
• CVE-2022-24607Luocms v2.0 is affected by SQL Injection in /admin/news/news_ok.php.9.8Mar 9, 2022
• CVE-2022-24606Luocms v2.0 is affected by SQL Injection in /admin/news/sort_ok.php.9.8Mar 9, 2022
• CVE-2022-24605Luocms v2.0 is affected by SQL Injection in /admin/link/link_ok.php.9.8Mar 9, 2022
• CVE-2022-24604Luocms v2.0 is affected by SQL Injection in /admin/link/link_mod.php.9.8Mar 9, 2022
• CVE-2022-24603Luocms v2.0 is affected by SQL Injection in /admin/news/sort_mod.php.9.8Mar 9, 2022
• CVE-2022-24602Luocms v2.0 is affected by SQL Injection in /admin/news/news_mod.php.9.8Mar 9, 2022
• CVE-2022-24601Luocms v2.0 is affected by SQL Injection in /admin/manager/admin_mod.php. An attacker can obtain sensitive information through SQL injection statements.7.5Mar 9, 2022
• CVE-2022-24600Luocms v2.0 is affected by SQL Injection through /admin/login.php. An attacker can log in to the background through SQL injection statements.9.8Mar 9, 2022