Improper neutralization of input provided by an authorized user in article positioning functionality allows for Blind SQL Injectio

Improper neutralization of input provided by an authorized user in article positioning functionality allows for Blind SQL Injectio

Due to client-controlled permission check parameter, PAD CMS's upload photo functionality allows an unauthenticated remote attacke

PAD CMS is vulnerable to Cross-Site Request Forgery in reset password's functionality. Malicious attacker can craft special websit

PAD CMS implements weak client-side brute-force protection by utilizing two cookies: login_count and login_timeout. Informati

PAD CMS improperly initializes parameter used for password recovery, which allows to change password for any user that did not use

PAD CMS is vulnerable to Reflected XSS in printing and save to PDF functionality. Malicious attacker can craft special URL, which

Due to client-controlled permission check parameter, PAD CMS's photo upload functionality allows an unauthenticated remote attacke

Due to client-controlled permission check parameter, PAD CMS's file upload functionality allows an unauthenticated remote attacker