3 matches found
Sql injection
SQL injection vulnerability in index.php in TSOKA:CMS 1.1, 1.9, and 2.0 allows remote attackers to execute arbitrary SQL commands via the id parameter in an articolo action...
CVE-2010-2675
Cross-site scripting XSS vulnerability in index.php in TSOKA:CMS 1.1, 1.9, and 2.0 allows remote attackers to inject arbitrary web script or HTML via the id parameter in an articolo action...
CVE-2010-2675
CVE-2010-2675 affects TSOKA:CMS versions 1.1, 1.9, and 2.0, with a cross-site scripting (XSS) flaw in index.php. The vulnerability allows remote attackers to inject arbitrary web script or HTML via the id parameter in an articolo action. The provided connected documents do not specify a root caus...