gxlcms 関連製品全体の CVE とセキュリティ脆弱性情報を集約し、CVSS、EPSS、公開日、脆弱性情報データを掲載しています。
公開された問題は vendor risk sql injection、vendor risk cross-site scripting, and vendor risk csrf に関連することが多く、vendor surface production workloads and vendor surface software deployment の文脈で vendor impact data exposure and vendor impact session compromise などの暴露リスクを伴う場合があります。
掲載データは公開脆弱性情報とセキュリティ公告に基づき、過去の暴露面と修補優先度の評価に利用できます。
| CVE | 概要 | ソース | CVSS 最大値 | EPSS(%) | 公開 | 更新 |
|---|---|---|---|---|---|---|
| CVE-2020-20975 | In \lib\admin\action\dataaction.class.php in Gxlcms v1.1, SQL Injection exists via the $filename parameter. | [email protected] | 9.8 | 1.28% | 2021-08-12 | 2026-06-16 |
| CVE-2018-18488 | In \lib\admin\action\dataaction.class.php in Gxlcms v2.0, SQL Injection exists via the ids[] parameter. | [email protected] | 9.8 | 1.14% | 2018-10-18 | 2026-06-16 |
| CVE-2018-18487 | In \lib\admin\action\dataaction.class.php in Gxlcms v2.0, the database backup filename generation uses mt_rand() unsafely, resulting in predictable database backup file locations. | [email protected] | 7.5 | 1.21% | 2018-10-18 | 2026-06-16 |
| CVE-2018-16655 | Gxlcms 1.0 has XSS via the PATH_INFO to gx/lib/ThinkPHP/Tpl/ThinkException.tpl.php. | [email protected] | 6.1 | 0.73% | 2018-09-07 | 2026-06-16 |
| CVE-2018-16437 | Gxlcms 2.0 before bug fix 20180915 has Directory Traversal exploitable by an administrator. | [email protected] | 4.9 | 1.56% | 2018-09-05 | 2026-06-16 |
| CVE-2018-16436 | Gxlcms 2.0 before bug fix 20180915 has SQL Injection exploitable by an administrator. | [email protected] | 7.2 | 1.45% | 2018-09-05 | 2026-06-16 |
| CVE-2018-15177 | In Gxlcms 2.0, a news/index.php?s=Admin-Admin-Insert CSRF attack can add an administrator account. | [email protected] | 8.8 | 0.58% | 2018-08-07 | 2026-06-16 |
| CVE-2018-14685 | The add function in www/Lib/Lib/Action/Admin/TplAction.class.php in Gxlcms v1.1.4 allows remote attackers to read arbitrary files via a crafted index.php?s=Admin-Tpl-ADD-id request, related to Lib/Common/Admin/function.php. | [email protected] | 9.8 | 2.14% | 2018-07-28 | 2026-06-16 |
| CVE-2018-9852 | In Gxlcms QY v1.0.0713, Lib\Lib\Action\Home\HitsAction.class.php allows remote attackers to read data from a database by embedding a FROM clause in a query string within a Home-Hits request, as demonstrated hy sid=user,password%20from%20mysql.user%23. | [email protected] | 9.8 | 1.39% | 2018-04-07 | 2026-06-16 |
| CVE-2018-9851 | In Gxlcms QY v1.0.0713, Lib\Lib\Action\Admin\TplAction.class.php allows remote attackers to read any file via a modified pathname in an Admin-Tpl request, as demonstrated by use of '|' instead of '/' as a directory separator, in conjunction with a ".." sequence. | [email protected] | 7.5 | 1.85% | 2018-04-07 | 2026-06-16 |
| CVE-2018-9850 | In Gxlcms QY v1.0.0713, Lib\Lib\Action\Admin\DataAction.class.php allows remote attackers to delete any file via directory traversal sequences in the id parameter of an Admin-Data-del request. | [email protected] | 7.5 | 1.89% | 2018-04-07 | 2026-06-16 |
| CVE-2018-9848 | In Gxlcms QY v1.0.0713, the upload function in Lib\Lib\Action\Admin\UploadAction.class.php allows remote attackers to execute arbitrary PHP code by first using an Admin-Admin-Configsave request to change the config[upload_class] value from jpg,gif,png,jpeg to jpg,gif,png,jpeg,php and then making an Admin-Upload-Upload request. | [email protected] | 9.8 | 2.24% | 2018-04-07 | 2026-06-16 |
| CVE-2018-9847 | In Gxlcms QY v1.0.0713, the update function in Lib\Lib\Action\Admin\TplAction.class.php allows remote attackers to execute arbitrary PHP code by placing this code into a template. | [email protected] | 9.8 | 1.58% | 2018-04-07 | 2026-06-16 |
| CVE-2018-9247 | The upsql function in \Lib\Lib\Action\Admin\DataAction.class.php in Gxlcms QY v1.0.0713 allows remote attackers to execute arbitrary SQL statements via the sql parameter. Consequently, an attacker can execute arbitrary PHP code by placing it after a <?php substring, and then using INTO OUTFILE with a .php filename. | [email protected] | 9.8 | 1.58% | 2018-04-03 | 2026-06-16 |
| CVE-2017-14979 | Gxlcms uses an unsafe character-replacement approach in an attempt to restrict access, which allows remote attackers to read arbitrary files via modified pathnames in the s parameter to index.php, related to Lib/Admin/Action/TplAction.class.php and Lib/Admin/Common/function.php. | [email protected] | 7.5 | 1.47% | 2017-10-02 | 2026-06-16 |