Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

Filtered by vendor Thinkphp Subscribe
Total 19 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2022-45982 1 Thinkphp 1 Thinkphp 2023-02-16 N/A 9.8 CRITICAL
thinkphp 6.0.0~6.0.13 and 6.1.0~6.1.1 contains a deserialization vulnerability. This vulnerability allows attackers to execute arbitrary code via a crafted payload.
CVE-2022-47945 1 Thinkphp 1 Thinkphp 2022-12-30 N/A 9.8 CRITICAL
ThinkPHP Framework before 6.0.14 allows local file inclusion via the lang parameter when the language pack feature is enabled (lang_switch_on=true). An unauthenticated and remote attacker can exploit this to execute arbitrary operating system commands, as demonstrated by including pearcmd.php.
CVE-2022-44289 1 Thinkphp 1 Thinkphp 2022-12-08 N/A 8.8 HIGH
Thinkphp 5.1.41 and 5.0.24 has a code logic error which causes file upload getshell.
CVE-2022-38352 1 Thinkphp 1 Thinkphp 2022-09-16 N/A 9.8 CRITICAL
ThinkPHP v6.0.13 was discovered to contain a deserialization vulnerability via the component League\Flysystem\Cached\Storage\Psr6Cache. This vulnerability allows attackers to execute arbitrary code via a crafted payload.
CVE-2022-33107 1 Thinkphp 1 Thinkphp 2022-07-07 7.5 HIGH 9.8 CRITICAL
ThinkPHP v6.0.12 was discovered to contain a deserialization vulnerability via the component vendor\league\flysystem-cached-adapter\src\Storage\AbstractCache.php. This vulnerability allows attackers to execute arbitrary code via a crafted payload.
CVE-2021-23592 1 Thinkphp 1 Thinkphp 2022-05-16 7.5 HIGH 9.8 CRITICAL
The package topthink/framework before 6.0.12 are vulnerable to Deserialization of Untrusted Data due to insecure unserialize method in the Driver class.
CVE-2019-9082 3 Opensourcebms, Thinkphp, Zzzcms 3 Open Source Background Management System, Thinkphp, Zzzphp 2022-04-05 9.3 HIGH 8.8 HIGH
ThinkPHP before 3.2.4, as used in Open Source BMS v1.1.1 and other products, allows Remote Command Execution via public//?s=index/\think\app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]= followed by the command.
CVE-2022-25481 1 Thinkphp 1 Thinkphp 2022-03-28 5.0 MEDIUM 7.5 HIGH
ThinkPHP Framework v5.0.24 was discovered to be configured without the PATHINFO parameter. This allows attackers to access all system environment parameters from index.php.
CVE-2021-44892 1 Thinkphp 1 Thinkphp 2022-02-23 6.5 MEDIUM 8.8 HIGH
A Remote Code Execution (RCE) vulnerability exists in ThinkPHP 3.x.x via value[_filename] in index.php, which could let a malicious user obtain server control privileges.
CVE-2021-44350 1 Thinkphp 1 Thinkphp 2021-12-20 7.5 HIGH 9.8 CRITICAL
SQL Injection vulnerability exists in ThinkPHP5 5.0.x <=5.1.22 via the parseOrder function in Builder.php.
CVE-2021-36567 1 Thinkphp 1 Thinkphp 2021-12-07 10.0 HIGH 9.8 CRITICAL
ThinkPHP v6.0.8 was discovered to contain a deserialization vulnerability via the component League\Flysystem\Cached\Storage\AbstractCache.
CVE-2021-36564 1 Thinkphp 1 Thinkphp 2021-12-07 7.5 HIGH 9.8 CRITICAL
ThinkPHP v6.0.8 was discovered to contain a deserialization vulnerability via the component vendor\league\flysystem-cached-adapter\src\Storage\Adapter.php.
CVE-2020-20120 1 Thinkphp 1 Thinkphp 2021-10-06 7.5 HIGH 9.8 CRITICAL
ThinkPHP v3.2.3 and below contains a SQL injection vulnerability which is triggered when the array is not passed to the "where" and "query" methods.
CVE-2018-18546 1 Thinkphp 1 Thinkphp 2018-12-04 7.5 HIGH 9.8 CRITICAL
ThinkPHP 3.2.4 has SQL Injection via the order parameter because the Library/Think/Db/Driver.class.php parseOrder function mishandles the key variable.
CVE-2018-18530 1 Thinkphp 1 Thinkphp 2018-12-04 7.5 HIGH 9.8 CRITICAL
ThinkPHP 5.1.25 has SQL Injection via the count parameter because the library/think/db/Query.php aggregate function mishandles the aggregate variable. NOTE: a backquote character is required in the attack URI.
CVE-2018-18529 1 Thinkphp 1 Thinkphp 2018-12-04 7.5 HIGH 9.8 CRITICAL
ThinkPHP 3.2.4 has SQL Injection via the count parameter because the Library/Think/Db/Driver/Mysql.class.php parseKey function mishandles the key variable. NOTE: a backquote character is not required in the attack URI.
CVE-2018-17566 1 Thinkphp 1 Thinkphp 2018-11-20 7.5 HIGH 9.8 CRITICAL
In ThinkPHP 5.1.24, the inner function delete can be used for SQL injection when its WHERE condition's value can be controlled by a user's request.
CVE-2018-16385 1 Thinkphp 1 Thinkphp 2018-10-31 7.5 HIGH 9.8 CRITICAL
ThinkPHP before 5.1.23 allows SQL Injection via the public/index/index/test/index query string.
CVE-2018-10225 1 Thinkphp 1 Thinkphp 2018-05-17 7.5 HIGH 9.8 CRITICAL
thinkphp 3.1.3 has SQL Injection via the index.php s parameter.