Security Advisory

CVE-2024-58301

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-12-11 21:39:49

Last updated 2026-04-07 14:08:45

Assigner VulnCheck

State PUBLISHED

Description

Purei CMS 1.0 contains a time-based blind SQL injection vulnerability that allows attackers to manipulate database queries through unfiltered user input parameters. Attackers can exploit vulnerable endpoints like getAllParks.php and events-ajax.php by injecting crafted SQL payloads to potentially extract or modify database information.

← Browse all CVEs View on cve.org ↗