6 matches found
PT-2026-41343
Schlix CMS 2.2.6-6 contains a remote code execution vulnerability that allows authenticated attackers to execute arbitrary PHP code by uploading malicious extension packages through the block manager. Attackers can upload a crafted ZIP file containing PHP code in the packageinfo.inc file and...
CVE-2025-67443
Schlix CMS before v2.2.9-5 is vulnerable to Cross Site Scripting XSS. Due to lack of javascript sanitization in the login form, incorrect login attempts in logs are triggered as XSS in the admin panel...
Schlix CMS 安全漏洞
Schlix CMS is an open source content management system CMS based on PHP and MySQL from Schlix. A security vulnerability exists in Schlix CMS versions prior to v2.2.9-5, which stems from a missing javascript cleanup in the login form, which could lead to an XSS attack in the admin panel...
The vulnerability of the core.mediamanager component in the SCHLIX CMS content management system allows a hacker to execute arbitrary code.
The vulnerability of the core.mediamanager component in the SCHLIX CMS content management system is related to the unlimited loading of dangerous files. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...
CVE-2023-31505
An arbitrary file upload vulnerability in Schlix CMS v2.2.8-1, allows remote authenticated attackers to execute arbitrary code and obtain sensitive information via a crafted .phtml file...
Schlix CMS Security Vulnerability
Schlix CMS is an open source content management system CMS based on PHP and MySQL. A security vulnerability exists in Schlix CMS version v2.2.8-1, which stems from an arbitrary file upload vulnerability that could allow an authenticated, remote attacker to execute arbitrary code and obtain...