Thinkphp: >> Thinkphp >> 5.0.0 Security Vulnerabilities
ThinkPHP 5.0.23 contains a remote code execution vulnerability that allows unauthenticated attackers to execute arbitrary PHP code by invoking functions through the routing parameter. Attackers can craft requests to the index.php endpoint with malicious function parameters to execute system commands with application privileges.
CVSS Score
9.3
EPSS Score
0.014
Published
2026-04-22
ThinkPHP Framework before 6.0.14 allows local file inclusion via the lang parameter when the language pack feature is enabled (lang_switch_on=true). An unauthenticated and remote attacker can exploit this to execute arbitrary operating system commands, as demonstrated by including pearcmd.php.
CVSS Score
9.8
EPSS Score
0.903
Published
2022-12-23
The package topthink/framework before 6.0.12 are vulnerable to Deserialization of Untrusted Data due to insecure unserialize method in the Driver class.
CVSS Score
7.7
EPSS Score
0.01
Published
2022-05-06
SQL Injection vulnerability exists in ThinkPHP5 5.0.x <=5.1.22 via the parseOrder function in Builder.php.
CVSS Score
9.8
EPSS Score
0.01
Published
2021-12-15
ThinkPHP before 5.1.23 allows SQL Injection via the public/index/index/test/index query string.
CVSS Score
9.8
EPSS Score
0.005
Published
2018-09-03