60 matches found
CVE-2009-4154
Directory traversal vulnerability in includes/feedcreator.class.php in Elxis CMS allows remote attackers to read arbitrary files via a .. dot dot in the filename parameter...
EUVD-2011-4829
Malware in sbrugna...
EUVD-2007-3240
Malware in sbrugna...
EUVD-2009-4124
Malware in sbrugna...
EUVD-2008-4629
Malware in sbrugna...
EUVD-2008-4628
Malware in sbrugna...
Elxis CMS 2008.1 PHPSESSID Variable Session Fixation
No description provided by source. source: http://www.securityfocus.com/bid/31764/info Elxis CMS is prone to multiple cross-site scripting and session-fixation vulnerabilities because it fails to sufficiently sanitize user-supplied data. The application is also prone to a session-fixation...
Elxis CMS 2009.2 - SQL Injection Vulnerabilities
No description provided by source. Vulnerability ID: HTB22700 Reference: http://www.htbridge.ch/advisory/sqlinjectioninelxiscms1.html Product: Elxis CMS Vendor: Elxis Team http://www.elxis.org/ Vulnerable Version: 2009.2 electra Vendor Notification: 16 November 2010 Vulnerability Type: SQL...
Elxis CMS 2009.2 - Remote file include vulnerbility
No description provided by source. \ \ \ / / / \ / / / |// / / // // / / / // // / // // / // // / //|| priasantai.uni.cc | team-elite.us elxis2009.2electrarev2631 === multiple Remote File Include Author : n0n0x Homepage: http://priasantai.uni.cc/ Download script :...
Elxis CMS 2008.1 modules/mod_language.php Multiple Parameter XSS
No description provided by source. source: http://www.securityfocus.com/bid/31764/info Elxis CMS is prone to multiple cross-site scripting and session-fixation vulnerabilities because it fails to sufficiently sanitize user-supplied data. The application is also prone to a session-fixation...
CVE-2011-4918
Multiple cross-site scripting XSS vulnerabilities in Elxis CMS 2009.2, 2009.3 and 2009.3 Aphrodite before revision 2684 allow remote attackers to inject arbitrary web script or HTML via the 1 task parameter to elxis/index.php, and 2 PATHINFO to elxis/administrator/index.php...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in Elxis CMS 2009.2, 2009.3 and 2009.3 Aphrodite before revision 2684 allow remote attackers to inject arbitrary web script or HTML via the 1 task parameter to elxis/index.php, and 2 PATHINFO to elxis/administrator/index.php...
CVE-2011-4918
Multiple cross-site scripting XSS vulnerabilities in Elxis CMS 2009.2, 2009.3 and 2009.3 Aphrodite before revision 2684 allow remote attackers to inject arbitrary web script or HTML via the 1 task parameter to elxis/index.php, and 2 PATHINFO to elxis/administrator/index.php...
CVE-2011-4918
CVE-2011-4918 affects Elxis CMS versions 2009.2, 2009.3 and 2009.3 Aphrodite prior to revision 2684. The vulnerability is multiple cross-site scripting (XSS) that allows remote attackers to inject arbitrary web script or HTML via (1) the task parameter to elxis/index.php and (2) PATH_INFO to elxi...
[DCA-2011-0014] - Elxis CMS Cross Site Script
Discussion - DcLabs Security Research Group advises about the following vulnerabilityies: Software - Elxis CMS Vendor Product Description - Elxis is powerful open source content management system CMS released for free under the GNU/GPL license. It has unique multi-lingual features, it follows W3C...
Elxis CMS 2009 - administratorindex.php URI Cross-Site Scripting
Elxis CMS 2009 - administratorindex.php URI Cross-Site Scripting source: https://www.securityfocus.com/bid/50910/info Elxis CMS is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input before using it in dynamically generated content. An...
Elxis CMS 2009.3 Aphrodite Cross Site Scripting
Discussion - DcLabs Security Research Group advises about the following vulnerabilityies: Software - Elxis CMS Vendor Product Description - Elxis is powerful open source content management system CMS released for free under the GNU/GPL license. It has unique multi-lingual features, it follows W3C...
Elxis CMS 2009 - 'index.php?task' Cross-Site Scripting
source: https://www.securityfocus.com/bid/50910/info Elxis CMS is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input before using it in dynamically generated content. An attacker may leverage these issues to execute arbitrary script co...
Elxis CMS 2009 - 'administrator/index.php' URI Cross-Site Scripting
source: https://www.securityfocus.com/bid/50910/info Elxis CMS is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input before using it in dynamically generated content. An attacker may leverage these issues to execute arbitrary script co...
Elxis CMS 2009 - index.php?task Cross-Site Scripting
Elxis CMS 2009 - index.php?task Cross-Site Scripting source: https://www.securityfocus.com/bid/50910/info Elxis CMS is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input before using it in dynamically generated content. An attacker may...