6 matches found
CVE-2009-2333
Multiple directory traversal vulnerabilities in CMS Chainuk 1.2 and earlier allow remote attackers to include and execute arbitrary local files via a .. dot dot in 1 the menu parameter to admin/adminmenu.php, and the id parameter to 2 index.php and 3 admin/adminedit.php; and 4 delete arbitrary...
Directory traversal
Multiple directory traversal vulnerabilities in CMS Chainuk 1.2 and earlier allow remote attackers to include and execute arbitrary local files via a .. dot dot in 1 the menu parameter to admin/adminmenu.php, and the id parameter to 2 index.php and 3 admin/adminedit.php; and 4 delete arbitrary...
CVE-2009-2330
Cross-site scripting XSS vulnerability in admin/adminmenu.php in CMS Chainuk 1.2 and earlier allows remote attackers to inject arbitrary web script or HTML via the menu parameter...
CVE-2009-2330
Cross-site scripting XSS vulnerability in admin/adminmenu.php in CMS Chainuk 1.2 and earlier allows remote attackers to inject arbitrary web script or HTML via the menu parameter...
CVE-2009-2333
Multiple directory traversal vulnerabilities in CMS Chainuk 1.2 and earlier allow remote attackers to include and execute arbitrary local files via a .. dot dot in 1 the menu parameter to admin/adminmenu.php, and the id parameter to 2 index.php and 3 admin/adminedit.php; and 4 delete arbitrary...
CVE-2009-2331
Multiple static code injection vulnerabilities in CMS Chainuk 1.2 and earlier allow remote attackers to inject arbitrary PHP code 1 into settings.php via the menu parameter to adminsettings.php or 2 into a content/=NUMBER.php file via the title parameter to adminnew.php...