Pbootcms

Pbootcms

42 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.3

CVE-2026-12066

Exploit
  • EPSS 0.29%
  • Veröffentlicht 12.06.2026 13:00:07
  • Zuletzt bearbeitet 12.06.2026 16:16:27

A security flaw has been discovered in PbootCMS up to 3.2.12. This vulnerability affects the function retrieve of the file apps/home/controller/MemberController.php of the component Password Handler. The manipulation of the argument username/password...

4.3

CVE-2026-36239

  • EPSS 0.31%
  • Veröffentlicht 26.05.2026 00:00:00
  • Zuletzt bearbeitet 27.05.2026 20:00:46

PbootCMS v.3.2.11 contains a code injection vulnerability in its site configuration functionality

6.3

CVE-2026-4514

Exploit
  • EPSS 0.2%
  • Veröffentlicht 21.03.2026 10:32:09
  • Zuletzt bearbeitet 29.04.2026 01:00:01

A flaw has been found in PbootCMS up to 3.2.12. Affected by this issue is some unknown functionality of the file apps/admin/controller/system/UserController.php of the component Backend. Executing a manipulation of the argument Field can lead to impr...

4.3

CVE-2026-4510

  • EPSS 0.27%
  • Veröffentlicht 21.03.2026 07:16:10
  • Zuletzt bearbeitet 29.04.2026 01:00:01

A weakness has been identified in PbootCMS up to 3.2.12. This impacts the function alert_location of the file apps/home/controller/MemberController.php of the component Parameter Handler. This manipulation of the argument backurl causes cross site sc...

6.3

CVE-2026-4509

Exploit
  • EPSS 0.29%
  • Veröffentlicht 21.03.2026 06:02:10
  • Zuletzt bearbeitet 29.04.2026 01:00:01

A security flaw has been discovered in PbootCMS up to 3.2.12. This affects an unknown function of the file core/function/file.php of the component File Upload. The manipulation of the argument black results in incomplete blacklist. The attack may be ...

7.3

CVE-2026-4508

Exploit
  • EPSS 0.26%
  • Veröffentlicht 20.03.2026 22:32:10
  • Zuletzt bearbeitet 29.04.2026 01:00:01

A vulnerability was identified in PbootCMS up to 3.2.12. The impacted element is the function checkUsername of the file apps/home/controller/MemberController.php of the component Member Login. The manipulation of the argument Username leads to sql in...

5.3

CVE-2025-15154

Exploit
  • EPSS 0.22%
  • Veröffentlicht 28.12.2025 21:02:07
  • Zuletzt bearbeitet 30.12.2025 19:02:50

A security vulnerability has been detected in PbootCMS up to 3.2.12. The affected element is the function get_user_ip of the file core/function/handle.php of the component Header Handler. The manipulation of the argument X-Forwarded-For leads to use ...

5.9

CVE-2025-15153

Exploit
  • EPSS 0.43%
  • Veröffentlicht 28.12.2025 20:32:07
  • Zuletzt bearbeitet 29.04.2026 01:00:01

A weakness has been identified in PbootCMS up to 3.2.12. Impacted is an unknown function of the file /data/pbootcms.db of the component SQLite Database. Executing a manipulation can lead to files or directories accessible. It is possible to launch th...

8.8

CVE-2025-46109

Exploit
  • EPSS 0.37%
  • Veröffentlicht 18.06.2025 15:15:27
  • Zuletzt bearbeitet 26.06.2025 15:51:06

SQL Injection vulnerability in pbootCMS v.3.2.5 and v.3.2.10 allows a remote attacker to obtain sensitive information via a crafted GET request

6.5

CVE-2025-3787

Exploit
  • EPSS 0.37%
  • Veröffentlicht 18.04.2025 09:31:04
  • Zuletzt bearbeitet 23.04.2025 17:52:33

A vulnerability was found in PbootCMS 3.2.5. It has been classified as problematic. Affected is an unknown function of the component Image Handler. The manipulation leads to server-side request forgery. It is possible to launch the attack remotely. T...