13 matches found
EUVD-2008-0759
Malware in sbrugna...
Calimero.CMS 3.3 'id' Parameter Cross Site Scripting Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/27690/info Calimero.CMS is prone to a cross-site scripting vulnerability. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. Th...
CVE-2008-0749
Cross-site scripting XSS vulnerability in index.php in Calimero.CMS 3.3 allows remote attackers to inject arbitrary web script or HTML via the id parameter in a calimerowebpage action...
Cross site scripting
Cross-site scripting XSS vulnerability in index.php in Calimero.CMS 3.3 allows remote attackers to inject arbitrary web script or HTML via the id parameter in a calimerowebpage action...
CVE-2008-0749
CVE-2008-0749 is a Cross-site Scripting (XSS) vulnerability in Calimero.CMS 3.3, exploitable via the id parameter in the calimero_webpage action of index.php. The NVD entry states the vulnerability can allow an attacker to inject arbitrary script/HTML, with the impact on confidentiality: none, in...
CVE-2008-0749
Cross-site scripting XSS vulnerability in index.php in Calimero.CMS 3.3 allows remote attackers to inject arbitrary web script or HTML via the id parameter in a calimerowebpage action...
Calimero.CMS 3.3 - id Cross-Site Scripting
Calimero.CMS 3.3 - id Cross-Site Scripting source: https://www.securityfocus.com/bid/27690/info Calimero.CMS is prone to a cross-site scripting vulnerability. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected...
Calimero.CMS 3.3 - 'id' Cross-Site Scripting
source: https://www.securityfocus.com/bid/27690/info Calimero.CMS is prone to a cross-site scripting vulnerability. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This may help the attacker steal...
Session fixation
Session fixation vulnerability in Calimero.CMS 3.3.1232 and earlier allows remote attackers to hijack web sessions by setting the PHPSESSID parameter...
CVE-2007-3053
Session fixation vulnerability in Calimero.CMS 3.3.1232 and earlier allows remote attackers to hijack web sessions by setting the PHPSESSID parameter...
CVE-2007-3053
CVE-2007-3053 affects Calimero.CMS, specifically version 3.3.1232 and earlier. The issue is a session fixation vulnerability that allows remote attackers to hijack web sessions by setting the PHPSESSID parameter. The available sources confirm the affected product/version and the attack vector (se...
CVE-2007-3053
Session fixation vulnerability in Calimero.CMS 3.3.1232 and earlier allows remote attackers to hijack web sessions by setting the PHPSESSID parameter...
[MajorSecurity Advisory #49]Calimero.CMS - Session fixation Issue
MajorSecurity Advisory 49Calimero.CMS - Session fixation Issue Details ======= Product: Calimero.CMS Affected version: 3.3.1232 and prior Remote-Exploit: yes Vendor-URL: http://www.calimero-cms.de Vendor-Status: informed Advisory-Status: published Credits ============ Discovered by: David...