CVE-2025-25759
- EPSS 1.16%
- Veröffentlicht 27.02.2025 15:15:41
- Zuletzt bearbeitet 09.04.2025 14:08:43
An issue in the component admin_template.php of SUCMS v1.0 allows attackers to execute a directory traversal and arbitrary file deletion via a crafted GET request.
CVE-2025-25760
- EPSS 0.12%
- Veröffentlicht 27.02.2025 15:15:41
- Zuletzt bearbeitet 09.04.2025 14:08:36
A Server-Side Request Forgery (SSRF) in the component admin_webgather.php of SUCMS v1.0 allows attackers to access internal data and services via a crafted GET request.
CVE-2024-13194
- EPSS 0.07%
- Veröffentlicht 09.01.2025 00:15:25
- Zuletzt bearbeitet 05.06.2025 19:45:03
A vulnerability was found in Sucms 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /admin/admin_members.php?ac=search. The manipulation of the argument uid leads to sql injection. The attack may be lau...
CVE-2023-2768
- EPSS 0.09%
- Veröffentlicht 17.05.2023 17:15:17
- Zuletzt bearbeitet 21.11.2024 07:59:15
A vulnerability was found in Sucms 1.0. It has been rated as problematic. Affected by this issue is some unknown functionality of the file admin_ads.php?action=add. The manipulation of the argument intro leads to cross site scripting. The attack may ...