Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Purei CMS 1.0 SQL Injection via Multiple Vulnerable Endpoints
Vulnerability Description
Purei CMS 1.0 contains a time-based blind SQL injection vulnerability that allows attackers to manipulate database queries through unfiltered user input parameters. Attackers can exploit vulnerable endpoints like getAllParks.php and events-ajax.php by injecting crafted SQL payloads to potentially extract or modify database information.
CVSS Information
N/A
Vulnerability Type
SQL命令中使用的特殊元素转义处理不恰当(SQL注入)
Vulnerability Title
Purei CMS SQL注入漏洞
Vulnerability Description
Purei CMS是荷兰Purei公司的一个内容管理系统。 Purei CMS 1.0版本存在SQL注入漏洞,该漏洞源于未过滤的用户输入参数存在基于时间的盲SQL注入,可能导致数据库信息泄露或篡改。
CVSS Information
N/A
Vulnerability Type
N/A