Placeto Cms
Approved changes feed: RSS · Atom
cpe:2.3:a:sourceforge:placeto_cms:*:*:*:*:*:*:*:*
part: a version: * update: *
| Vendor | Sourceforge (f6f3b515-d441-5dd2-b323-a578719a1725) |
|---|---|
| Product | Placeto Cms (fa328417-f4f3-524c-9fa4-4199380a1f22) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from gcve-enriched-dumps CVE data |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2019-25529 |
vulnerable | 2026-06-03 14:40:18.628573 |
Placeto CMS Alpha rv.4 SQL Injection via page Parameter
HIGH (7.1)
Placeto CMS Alpha rv.4 contains an SQL injection vulnerability that allows authenticated attackers to manipulate database queries by injecting SQL code through the 'page' parameter. Attackers can send GET requests to the admin/edit.php endpoint with malicious 'page' values using boolean-based blind, time-based blind, or union-based techniques to extract sensitive database information.
Published: 2026-03-12T15:37:00.375Z
Updated: 2026-03-12T16:40:52.010Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.