Pbootcms

Pbootcms

36 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.3

CVE-2025-15154

Exploit
  • EPSS 0.06%
  • Veröffentlicht 28.12.2025 21:02:07
  • Zuletzt bearbeitet 30.12.2025 19:02:50

A security vulnerability has been detected in PbootCMS up to 3.2.12. The affected element is the function get_user_ip of the file core/function/handle.php of the component Header Handler. The manipulation of the argument X-Forwarded-For leads to use ...

5.9

CVE-2025-15153

Exploit
  • EPSS 0.06%
  • Veröffentlicht 28.12.2025 20:32:07
  • Zuletzt bearbeitet 24.02.2026 07:16:59

A weakness has been identified in PbootCMS up to 3.2.12. Impacted is an unknown function of the file /data/pbootcms.db of the component SQLite Database. Executing a manipulation can lead to files or directories accessible. It is possible to launch th...

8.8

CVE-2025-46109

Exploit
  • EPSS 0.15%
  • Veröffentlicht 18.06.2025 15:15:27
  • Zuletzt bearbeitet 26.06.2025 15:51:06

SQL Injection vulnerability in pbootCMS v.3.2.5 and v.3.2.10 allows a remote attacker to obtain sensitive information via a crafted GET request

6.5

CVE-2025-3787

Exploit
  • EPSS 0.26%
  • Veröffentlicht 18.04.2025 09:31:04
  • Zuletzt bearbeitet 23.04.2025 17:52:33

A vulnerability was found in PbootCMS 3.2.5. It has been classified as problematic. Affected is an unknown function of the component Image Handler. The manipulation leads to server-side request forgery. It is possible to launch the attack remotely. T...

6.1

CVE-2025-29389

Exploit
  • EPSS 0.18%
  • Veröffentlicht 09.04.2025 15:16:02
  • Zuletzt bearbeitet 15.04.2025 13:42:23

PbootCMS v3.2.9 contains a XSS vulnerability in admin.php?p=/Content/index/mcode/2#tab=t2.

5.1

CVE-2020-19248

Exploit
  • EPSS 0.04%
  • Veröffentlicht 21.02.2025 19:15:10
  • Zuletzt bearbeitet 07.04.2025 15:05:33

SQL Injection vulnerability in PbootCMS 1.4.1 in parsing if statements in templates, resulting in a malicious user's ability to contaminate template content by searching for page contamination URLs, thus triggering vulnerabilities when the program us...

4.3

CVE-2024-12793

  • EPSS 0.3%
  • Veröffentlicht 19.12.2024 18:15:09
  • Zuletzt bearbeitet 06.01.2025 15:16:15

A vulnerability, which was classified as problematic, has been found in PbootCMS up to 5.2.3. Affected by this issue is some unknown functionality of the file apps/home/controller/IndexController.php. The manipulation of the argument tag leads to pat...

9.8

CVE-2024-12789

  • EPSS 0.48%
  • Veröffentlicht 19.12.2024 17:15:08
  • Zuletzt bearbeitet 10.01.2025 21:42:42

A vulnerability was found in PbootCMS up to 3.2.3. It has been classified as critical. This affects an unknown part of the file apps/home/controller/IndexController.php. The manipulation of the argument tag leads to code injection. It is possible to ...

6.1

CVE-2024-42930

  • EPSS 0.14%
  • Veröffentlicht 28.10.2024 20:15:05
  • Zuletzt bearbeitet 17.04.2025 18:43:12

PbootCMS 3.2.8 is vulnerable to URL Redirect.

6.1

CVE-2024-1018

Exploit
  • EPSS 0.06%
  • Veröffentlicht 29.01.2024 20:15:15
  • Zuletzt bearbeitet 21.11.2024 08:49:36

A vulnerability classified as problematic has been found in PbootCMS 3.2.5-20230421. Affected is an unknown function of the file /admin.php?p=/Area/index#tab=t2. The manipulation of the argument name leads to cross site scripting. It is possible to l...