Limerence98

**Name of the Vulnerable Software and Affected Versions** Csz Cms version 1.2.2 **Description** The issue is related to SQL Injection via the `cszcms admin Members viewUsers` function. This allows for potential unauthorized access to sensitive data. **Recommendations** For Csz Cms version 1.2.2, as a temporary workaround, consider restricting access to the `cszcms admin Members viewUsers` function until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** CSZ CMS version 1.2.2 **Description** The issue is related to SQL Injection, which can be exploited via the cszcms admin Members editUser function. This allows for potential unauthorized access to sensitive data. **Recommendations** For CSZ CMS version 1.2.2, as a temporary workaround, consider restricting access to the `cszcms admin Members editUser` function until a patch is available. Avoid using this function in production environments to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** CSZ CMS version 1.2.2 **Description** The issue is related to SQL Injection via the `cszcms admin Users editUser` function. This allows for potential exploitation. **Recommendations** For CSZ CMS version 1.2.2, as a temporary workaround, consider restricting access to the `cszcms admin Users editUser` function until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** CSZ CMS version 1.2.2 **Description** The issue is related to SQL Injection via the `cszcms admin Users viewUsers` endpoint. This allows for potential unauthorized access to sensitive data. No information is provided about the estimated number of potentially affected devices worldwide or real-world incidents where this issue was exploited. **Recommendations** For CSZ CMS version 1.2.2, as a temporary workaround, consider restricting access to the `cszcms admin Users viewUsers` endpoint until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** AtomCMS version 2.0 **Description** The issue is related to SQL Injection via the Atom.CMS admin ajax pages.php file. **Recommendations** For AtomCMS version 2.0, consider restricting access to the Atom.CMS admin ajax pages.php file until a patch is available.

**Name of the Vulnerable Software and Affected Versions** Atom.CMS version 2.0 **Description** The issue is related to SQL Injection via the Atom.CMS admin uploads.php file. **Recommendations** For Atom.CMS version 2.0, as a temporary workaround, consider restricting access to the Atom.CMS admin uploads.php file until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** AtomCMS version 2.0 **Description** The issue allows for SQL Injection via the `Atom.CMS admin ajax list-sort.php` endpoint. **Recommendations** For AtomCMS version 2.0, consider restricting access to the `Atom.CMS admin ajax list-sort.php` endpoint until a patch is available.

**Name of the Vulnerable Software and Affected Versions** Atom.CMS version 2.0 **Description** The issue is related to SQL Injection. It affects the Atom.CMS admin ajax blur-save.php file. **Recommendations** For Atom.CMS version 2.0, update to a version that fixes the SQL Injection issue in the Atom.CMS admin ajax blur-save.php file. As a temporary workaround, consider restricting access to the Atom.CMS admin ajax blur-save.php file to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** AtomCMS version 2.0 **Description** The issue is related to SQL Injection via the Atom.CMS admin ajax navigation.php file. **Recommendations** For AtomCMS version 2.0, consider disabling access to the Atom.CMS admin ajax navigation.php file until a patch is available. Restrict input validation to minimize the risk of SQL Injection exploitation.