Pragyan Cms Project: >> Pragyan Cms >> 3.0 Security Vulnerabilities
Pragyan CMS v3.0 is vulnerable to an Error-Based SQL injection in cms/admin.lib.php via $_GET['del_black'], resulting in Information Disclosure.
CVSS Score
4.9
EPSS Score
0.003
Published
2017-09-19
Pragyan CMS v3.0 is vulnerable to a Boolean-based SQL injection in cms/admin.lib.php via $_GET['forwhat'], resulting in Information Disclosure.
CVSS Score
4.9
EPSS Score
0.003
Published
2017-09-19
SQL injection vulnerability in Pragyan CMS 3.0.
CVSS Score
9.8
EPSS Score
0.003
Published
2017-09-07
SQL injection vulnerability in userprofile.lib.php in Pragyan CMS 3.0 allows remote attackers to execute arbitrary SQL commands via the user parameter to the default URI.
CVSS Score
7.5
EPSS Score
0.042
Published
2015-02-12
Directory traversal vulnerability in download.lib.php in Pragyan CMS 3.0 and earlier allows remote attackers to read arbitrary files via a .. (dot dot) in the fileget parameter in a profile action to index.php.
CVSS Score
5.0
EPSS Score
0.075
Published
2013-01-12