Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

26 matches found

Nuclei
Nucleiadded 14 hours ago45 views

11in1 CMS 1.2.1 - Local File Inclusion (LFI)

Multiple directory traversal vulnerabilities in 11in1 1.2.1 stable 12-31-2011 allow remote attackers to read arbitrary files via a .. dot dot in the class parameter to 1 index.php or 2 admin/index.php. id: CVE-2012-0996 info: name: 11in1 CMS 1.2.1 - Local File Inclusion LFI author: daffainfo...

5CVSS6AI score0.10059EPSS
Exploits2References4
RedhatCVE
RedhatCVEadded 2025/05/22 2:41 a.m.11 views

CVE-2012-0996

Multiple directory traversal vulnerabilities in 11in1 1.2.1 stable 12-31-2011 allow remote attackers to read arbitrary files via a .. dot dot in the class parameter to 1 index.php or 2 admin/index.php...

5CVSS7.1AI score0.10059EPSS
Exploits2References1
seebug.org
seebug.orgadded 2014/07/01 12:0 a.m.23 views

11in1 CMS 1.0.1 (do.php) - CRLF Injection Vulnerability

No description provided by source. 11in1 CMS v1.0.1 do.php CRLF Injection Vulnerability Vendor: 11in1 Product web page: http://www.11in1.org Affected version: 1.0.1 Summary: Eleven in One is an open-source content management system CMS that is powered by PHP and MySQL. It does not only help you...

7.1AI score
Exploits0
exploitpack
exploitpackadded 2012/03/05 12:0 a.m.12 views

11in1 CMS 1.2.1 - admincomments?topicID SQL Injection

11in1 CMS 1.2.1 - admincomments?topicID SQL Injection source: https://www.securityfocus.com/bid/52306/info 11in1 CMS is prone to multiple SQL-injection vulnerabilities because the application fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting these issue...

0.4AI score
Exploits0
exploitpack
exploitpackadded 2012/03/05 12:0 a.m.14 views

11in1 CMS 1.2.1 - admintps?id SQL Injection

11in1 CMS 1.2.1 - admintps?id SQL Injection source: https://www.securityfocus.com/bid/52306/info 11in1 CMS is prone to multiple SQL-injection vulnerabilities because the application fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting these issues could...

0.2AI score
Exploits0
Packet Storm
Packet Stormadded 2012/03/05 12:0 a.m.28 views

11in1 CMS 1.2.1 SQL Injection

Title: ====== 11in1 CMS v1.2.1 - SQL Injection Vulnerabilities Date: ===== 2012-03-05 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=465 VL-ID: ===== 465 Introduction: ============= 11in1 is an open-source content management system CMS that is powered by PHP and MySQL...

0.1AI score
Exploits0
Vulnerability Lab
Vulnerability Labadded 2012/03/05 12:0 a.m.26 views

11in1 CMS v1.2.1 - SQL Injection Vulnerabilities

Document Title: =============== 11in1 CMS v1.2.1 - SQL Injection Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=465 Release Date: ============= 2012-03-05 Vulnerability Laboratory ID VL-ID: ==================================== 465 Produc...

7.1AI score
Exploits0
Exploit DB
Exploit DBadded 2012/03/05 12:0 a.m.19 views

11in1 CMS 1.2.1 - 'admin/tps?id' SQL Injection

source: https://www.securityfocus.com/bid/52306/info 11in1 CMS is prone to multiple SQL-injection vulnerabilities because the application fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting these issues could allow an attacker to compromise the applicatio...

7.4AI score
Exploits0
Exploit DB
Exploit DBadded 2012/03/05 12:0 a.m.29 views

11in1 CMS 1.2.1 - 'admin/comments?topicID' SQL Injection

source: https://www.securityfocus.com/bid/52306/info 11in1 CMS is prone to multiple SQL-injection vulnerabilities because the application fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting these issues could allow an attacker to compromise the applicatio...

7.4AI score
Exploits0
Vulnerability Lab
Vulnerability Labadded 2012/03/05 12:0 a.m.12 views

11in1 CMS v1.2.1 - SQL Injection Vulnerabilities

Document Title: =============== 11in1 CMS v1.2.1 - SQL Injection Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=465 Release Date: ============= 2012-03-05 Vulnerability Laboratory ID VL-ID: ==================================== 465 Produc...

0.8AI score
Exploits0
securityvulns
securityvulnsadded 2012/02/22 12:0 a.m.101 views

Multiple vulnerabilities in 11in1

Advisory ID: HTB23071 Product: 11in1 Vendor: 11in1 Vulnerable Versions: 1.2.1 stable 12-31-2011 and probably prior Tested Version: 1.2.1 stable 12-31-2011 Vendor Notification: 25 January 2012 Public Disclosure: 15 February 2012 Vulnerability Type: Local File Inclusion, Сross-Site Request Forgery...

6.8CVSS6.2AI score0.10059EPSS
Exploits3
CVE
CVEadded 2012/02/20 7:0 p.m.110 views

CVE-2012-0996

CVE-2012-0996 affects the 11in1 CMS, version 1.2.1 stable. Affected component: the PHP parameter class in index.php and admin/index.php, where directory traversal is not properly validated, enabling Local File Inclusion to read arbitrary files. Impact: read access to sensitive files (internal pat...

5CVSS6.8AI score0.10059EPSS
Exploits2References1Affected Software1
CVE
CVEadded 2012/02/20 7:0 p.m.72 views

CVE-2012-0997

CVE-2012-0997: CSRF vulnerability in 11in1 1.2.1 stable (12-31-2011) affecting admin/index.php, allowing an attacker to hijack administrator authentication to perform addTopic requests. Multiple connected sources corroborate CSRF context and impact (topic creation via addTopic) with PoC examples ...

6.8CVSS7.1AI score0.00948EPSS
Exploits2References1Affected Software1
Packet Storm
Packet Stormadded 2012/02/16 12:0 a.m.60 views

11in1 1.2.1 Stable 12-31-2011 Cross Site Request Forgery / Local File Inclusion

Advisory ID: HTB23071 Product: 11in1 Vendor: 11in1 Vulnerable Versions: 1.2.1 stable 12-31-2011 and probably prior Tested Version: 1.2.1 stable 12-31-2011 Vendor Notification: 25 January 2012 Public Disclosure: 15 February 2012 Vulnerability Type: Local File Inclusion, Сross-Site Request Forgery...

6.8CVSS6.5AI score0.10059EPSS
Exploits3
OpenVAS
OpenVASadded 2012/02/16 12:0 a.m.35 views

11in1 Cross Site Request Forgery and Local File Include Vulnerabilities

11in1 is prone to a cross-site request-forgery and a local file include vulnerability. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only if...

6.8CVSS6AI score0.10059EPSS
Exploits3References2
exploitpack
exploitpackadded 2012/02/15 12:0 a.m.18 views

11in1 CMS 1.2.1 - Cross-Site Request Forgery (Admin Password)

11in1 CMS 1.2.1 - Cross-Site Request Forgery Admin Password source: https://www.securityfocus.com/bid/52025/info 11in1 is prone to a cross-site request-forgery and a local file include vulnerability. An attacker may leverage these issues to execute arbitrary script code in the browser of an...

1.1AI score
Exploits0
exploitpack
exploitpackadded 2012/02/15 12:0 a.m.13 views

11in1 CMS 1.2.1 - adminindex.php?class Traversal Local File Inclusion

11in1 CMS 1.2.1 - adminindex.php?class Traversal Local File Inclusion source: https://www.securityfocus.com/bid/52025/info 11in1 is prone to a cross-site request-forgery and a local file include vulnerability. An attacker may leverage these issues to execute arbitrary script code in the browser o...

0.1AI score
Exploits0
exploitpack
exploitpackadded 2012/02/15 12:0 a.m.17 views

11in1 CMS 1.2.1 - index.php?class Traversal Local File Inclusion

11in1 CMS 1.2.1 - index.php?class Traversal Local File Inclusion source: https://www.securityfocus.com/bid/52025/info 11in1 is prone to a cross-site request-forgery and a local file include vulnerability. An attacker may leverage these issues to execute arbitrary script code in the browser of an...

0.1AI score
Exploits0
Exploit DB
Exploit DBadded 2012/02/15 12:0 a.m.33 views

11in1 CMS 1.2.1 - '/admin/index.php?class' Traversal Local File Inclusion

source: https://www.securityfocus.com/bid/52025/info 11in1 is prone to a cross-site request-forgery and a local file include vulnerability. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site, steal...

7.4AI score
Exploits0
Exploit DB
Exploit DBadded 2012/02/15 12:0 a.m.33 views

11in1 CMS 1.2.1 - 'index.php?class' Traversal Local File Inclusion

source: https://www.securityfocus.com/bid/52025/info 11in1 is prone to a cross-site request-forgery and a local file include vulnerability. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site, steal...

7.4AI score
Exploits0
Rows per page
Query Builder