Impress CMS 1.3.9 Open Redirection

==================================================================================================================================== | Title : impress CMS v1.3.9 Open Redirect vulnerability | | Author : indoushka | | Tested on : windows 10 Français V.Pro / browser : Mozilla firefox 63.0.3 32-bit ...

Impress CMS 1.4.0 Cross Site Scripting

Author: AppleBois Homepage: https://sourceforge.net/projects/impresscms/ Affected Version: 1.4.0 Stored XSS Allows an attacker to execute arbitrary HTML and JavaScript code Solution: Update to 1.4.1 More information : https://github.com/ImpressCMS/impresscms/issues/659 Payload = alert'AppleBois';...

Impress CMS 1.4.0 Code Execution / SQL Injection

Author: AppleBois Homepage: https://sourceforge.net/projects/impresscms/ Affected Version: 1.4.0 Remote Code Execution or Sql Injection Authenticated user can make use of the AutoTask feature to execute php code, it allow authenticated user execute their own php code, which can cause SQL Injectio...

Impress CMS 1.3.7 Open Redirect

Affected Vendor: http://www.impresscms.org/ Date: 03/09/2014 Discovered by: JoeV Type of vulnerability: URL Redirection Tested on: Windows 7 Version : 1.3.7 Description: Impress CMS is susceptible to URL direction attack. When a malicious user sends a payload as...

[HACKATTACK Advisory 20081127]Social Impress CMS 1.1 - Session Fixation

HACKATTACK Advisory 3Social Impress CMS 1.1 - Session Fixation Details Product: Impress CMS Security-Risk: moderated Remote-Exploit: yes Vendor-URL: http://www.impresscms.info Vendor-Status: informed Advisory-Status: not yet published Credits Discovered by: David Vieira-Kurz...