2 matches found
Grafik CMS 1.1.2 - Multiple Cross-Site Request Forgery Vulnerabilities
Date: Mon 12 Jul 2010 07:07:22 PM EEST Vendor: http://www.grafik-power.com/grafikcms/ Download: None --- -= CSRF PoC 1 - Change Admin Password =- Grafik CMS 1.1.2 Multiple CSRF Vulnerabilities - Change Admin Password -= CSRF PoC 2 - Create Admin User =- Grafik CMS 1.1.2 Multiple CSRF...
CVE-2010-2614
Grafik CMS 1.1.2 (admin/admin.php) is affected by an SQL injection via the id parameter in the edit_page action. All connected sources consistently describe this vulnerability and its impact as arbitrary SQL execution on remote attackers; details on vulnerable versions beyond 1.1.2 are not explic...