Lucene search
K

9 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2022-2157

Malicious code in bioql PyPI...

6.1CVSS6.2AI score0.00683EPSS
Exploits1References4
Github Security Blog
Github Security Blog
added 2022/03/04 12:0 a.m.33 views

Cross-site Scripting in GeniXCMS

In Genixcms v1.1.11, a stored Cross-Site Scripting XSS vulnerability exists in /gxadmin/index.php?page=themes&view=options" via the introtitle and introimage parameters...

5.4CVSS3.3AI score0.00867EPSS
Exploits1References5Affected Software1
NVD
NVD
added 2017/09/27 8:29 a.m.25 views

CVE-2017-14765

In GeniXCMS 1.1.4, gxadmin/index.php has XSS via the Menu ID field in a page=menus request...

6.1CVSS5.9AI score0.00683EPSS
Exploits1References1
Prion
Prion
added 2017/09/27 8:29 a.m.20 views

Cross site request forgery (csrf)

In GeniXCMS 1.1.4, gxadmin/index.php has XSS via the Menu ID field in a page=menus request...

4.3CVSS5.9AI score0.00683EPSS
Exploits1References1Affected Software1
CNVD
CNVD
added 2017/09/27 12:0 a.m.4 views

GeniXCMS gxadmin/index.php file cross-site scripting vulnerability

MetalGenix GeniXCMS is a PHP-based content management system and framework CMSF from MetalGenix Indonesia, which provides modules for user management, content management and menu management. A cross-site scripting vulnerability exists in the gxadmin/index.php file in MetalGenix GeniXCMS version...

6.1CVSS5.8AI score0.00683EPSS
Exploits1References1
CNVD
CNVD
added 2017/01/16 12:0 a.m.4 views

MetalGenix GeniXCMS SQL Injection Vulnerability (CNVD-2017-00558)

MetalGenix GeniXCMS is a PHP-based content management system and framework CMSF from MetalGenix Indonesia, which provides modules for user management, content management and menu management. A SQL injection vulnerability exists in the inc/lib/Control/Backend/posts.control.php file in MetalGenix...

7.2CVSS7.8AI score0.01648EPSS
Exploits1References1
NVD
NVD
added 2017/01/12 6:59 a.m.15 views

CVE-2017-5347

SQL injection vulnerability in inc/mod/newsletter/options.php in GeniXCMS 0.0.8 allows remote authenticated administrators to execute arbitrary SQL commands via the recipient parameter to gxadmin/index.php...

7.2CVSS7.3AI score0.01414EPSS
Exploits1References2
NVD
NVD
added 2015/03/23 4:59 p.m.14 views

CVE-2015-2679

Multiple SQL injection vulnerabilities in MetalGenix GeniXCMS before 0.0.2 allow remote attackers to execute arbitrary SQL commands via the 1 page parameter to index.php or 2 username parameter to gxadmin/login.php...

7.5CVSS8.5AI score0.05575EPSS
Exploits2References10
NVD
NVD
added 2015/03/23 4:59 p.m.16 views

CVE-2015-2678

Multiple cross-site scripting XSS vulnerabilities in MetalGenix GeniXCMS before 0.0.2 allow remote attackers to inject arbitrary web script or HTML via the 1 cat parameter in the categories page to gxadmin/index.php or 2 page parameter to index.php...

4.3CVSS5.8AI score0.05358EPSS
Exploits2References8
Rows per page
Query Builder