55 matches found
MetalGenix GeniXCMS SQL Injection Vulnerability (CNVD-2017-01320)
MetalGenix GeniXCMS is a PHP-based content management system and framework CMSF from MetalGenix Indonesia, which provides modules for user management, content management and menu management. A SQL injection vulnerability exists in the inc/lib/Options.class.php file in MetalGenix GeniXCMS 0.0.8 an...
MetalGenix GeniXCMS SQL Injection Vulnerability (CNVD-2017-01322)
MetalGenix GeniXCMS is a PHP-based content management system and framework CMSF from MetalGenix Indonesia, which provides modules for user management, content management and menu management. A SQL injection vulnerability exists in the register.php file in MetalGenix GeniXCMS 0.0.8 and earlier...
MetalGenix GeniXCMS SQL Injection Vulnerability (CNVD-2017-00557)
MetalGenix GeniXCMS is a PHP-based content management system and framework CMSF from MetalGenix Indonesia, which provides modules for user management, content management and menu management. A SQL injection vulnerability exists in the inc/lib/Control/Ajax/tags-ajax.control.php file in MetalGenix...
MetalGenix GeniXCMS SQL Injection Vulnerability (CNVD-2017-00559)
MetalGenix GeniXCMS is a PHP-based content management system and framework CMSF from MetalGenix Indonesia, which provides modules for user management, content management and menu management. A SQL injection vulnerability exists in the inc/mod/newsletter/options.php file in MetalGenix GeniXCMS...
MetalGenix GeniXCMS SQL Injection Vulnerability
MetalGenix GeniXCMS is a PHP-based content management system and framework CMSF from MetalGenix Indonesia, which provides modules for user management, content management and menu management. A SQL injection vulnerability exists in the register.php file in MetalGenix GeniXCMS versions prior to...
MetalGenix GeniXCMS 0.0.1 - XSS Vulnerabilities
No description provided by source...
Multiple Cross-Site Scripting Vulnerabilities in MetalGenix GeniXCMS
MetalGenix GeniXCMS is a PHP-based content management system and framework CMSF from MetalGenix Indonesia, which provides modules for user management, content management and menu management. A cross-site scripting vulnerability exists in MetalGenix GeniXCMS version 0.0.3. The vulnerability exists...
CVE-2015-5066
Multiple cross-site scripting XSS vulnerabilities in the MetalGenix GeniXCMS 0.0.3 allow remote attackers to inject arbitrary web script or HTML via the 1 content or 2 title field in an add action in the posts page to index.php or the 3 q parameter in the posts page to index.php...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in the MetalGenix GeniXCMS 0.0.3 allow remote attackers to inject arbitrary web script or HTML via the 1 content or 2 title field in an add action in the posts page to index.php or the 3 q parameter in the posts page to index.php...
CVE-2015-5066
Multiple cross-site scripting XSS vulnerabilities in the MetalGenix GeniXCMS 0.0.3 allow remote attackers to inject arbitrary web script or HTML via the 1 content or 2 title field in an add action in the posts page to index.php or the 3 q parameter in the posts page to index.php...
CVE-2015-5066
CVE-2015-5066 affects MetalGenix GeniXCMS 0.0.3. The root cause is inadequate input filtering in the index.php script for the posts page: (1) content field, (2) title field during the add action, and (3) q parameter, enabling remote attackers to inject arbitrary web script or HTML (XSS). This vul...
CVE-2015-5066
Multiple cross-site scripting XSS vulnerabilities in the MetalGenix GeniXCMS 0.0.3 allow remote attackers to inject arbitrary web script or HTML via the 1 content or 2 title field in an add action in the posts page to index.php or the 3 q parameter in the posts page to index.php...
Multiple Cross-Site Scripting Vulnerabilities in MetalGenix GeniXCMS
MetalGenix GeniXCMS is a content management system. MetalGenix GeniXCMS suffers from multiple cross-site scripting vulnerabilities. The vulnerabilities allow remote attackers to inject malicious script or HTML code, which can be used to obtain sensitive information or hijack user sessions when...
MetalGenix GeniXCMS SQL Injection Vulnerability
MetalGenix GeniXCMS is a content management system. MetalGenix GeniXCMS suffers from a SQL injection vulnerability. This vulnerability allows attackers to submit specially crafted SQL queries to manipulate or obtain database data...
CVE-2015-2680
Cross-site request forgery CSRF vulnerability in MetalGenix GeniXCMS before 0.0.2 allows remote attackers to hijack the authentication of administrators for requests that add an administrator account via a request in the users page to gxadmin/index.php...
CVE-2015-2679
Multiple SQL injection vulnerabilities in MetalGenix GeniXCMS before 0.0.2 allow remote attackers to execute arbitrary SQL commands via the 1 page parameter to index.php or 2 username parameter to gxadmin/login.php...
CVE-2015-2678
Multiple cross-site scripting XSS vulnerabilities in MetalGenix GeniXCMS before 0.0.2 allow remote attackers to inject arbitrary web script or HTML via the 1 cat parameter in the categories page to gxadmin/index.php or 2 page parameter to index.php...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in MetalGenix GeniXCMS before 0.0.2 allow remote attackers to inject arbitrary web script or HTML via the 1 cat parameter in the categories page to gxadmin/index.php or 2 page parameter to index.php...
Cross site request forgery (csrf)
Cross-site request forgery CSRF vulnerability in MetalGenix GeniXCMS before 0.0.2 allows remote attackers to hijack the authentication of administrators for requests that add an administrator account via a request in the users page to gxadmin/index.php...
Sql injection
Multiple SQL injection vulnerabilities in MetalGenix GeniXCMS before 0.0.2 allow remote attackers to execute arbitrary SQL commands via the 1 page parameter to index.php or 2 username parameter to gxadmin/login.php...