6 matches found
EUVD-2021-26603
Malware in sbrugna...
CVE-2021-3264
SQL Injection vulnerability in cxuucms 3.1 ivia the pid parameter in public/admin.php...
Sql injection
SQL Injection vulnerability in cxuucms 3.1 ivia the pid parameter in public/admin.php...
CVE-2021-3264
The CVE-2021-3264 entry concerns a SQL injection in cxuucms 3.1, triggered by the pid parameter in public/admin.php. Multiple connected sources corroborate the flaw and its impact, noting the vulnerability can lead to access to sensitive database information. Affected software: cxuucms 3.1. Root ...
Cross site scripting
Multiple Cross Site Scripting XSS vulnerabilities exists in CXUUCMS 3.1 in the search and c parameters in 1 public/search.php and in the 2 c parameter in admin.php...
CVE-2021-39599
CVE-2021-39599 affects CXUUCMS 3.1, with multiple XSS vulnerabilities in public/search.php (search parameter) and admin.php (c parameter). The root cause is unsanitized input leading to client-side code execution. Impact is documented as XSS with potential impact on confidentiality/integrity depe...