CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

38 matches found

RedhatCVE•added 2026/01/09 9:46 a.m.•5 views

CVE-2015-0917

Cross-site scripting XSS vulnerability in the backend in Kajona before 4.6.3 allows remote attackers to inject arbitrary web script or HTML via the action parameter to index.php...

4.3CVSS5.9AI score0.004EPSS

Exploits1References1

EUVD•added 2025/10/07 12:30 a.m.•4 views

EUVD-2015-0925

Malware in sbrugna...

4.3CVSS6.4AI score0.004EPSS

Exploits1References6

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2012-3752

Malware in sbrugna...

4.3CVSS6.2AI score0.00868EPSS

Exploits3References7

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2014-4661

Malware in sbrugna...

4.3CVSS6.4AI score0.00359EPSS

Exploits1References5

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2014-4662

Malware in sbrugna...

4.3CVSS6.4AI score0.00256EPSS

Exploits1References5

RedhatCVE•added 2025/05/22 1:36 p.m.•7 views

CVE-2014-4742

Cross-site scripting XSS vulnerability in system/classlink.php in the System module modulesystem in Kajona before 4.5 allows remote attackers to inject arbitrary web script or HTML via the systemid parameter in a mediaFolder action to index.php...

4.3CVSS5.9AI score0.00359EPSS

Exploits1References1

RedhatCVE•added 2025/05/22 12:22 p.m.•7 views

CVE-2012-3805

Multiple cross-site scripting XSS vulnerabilities in the getAllPassedParams function in system/functions.php in Kajona before 3.4.2 allow remote attackers to inject arbitrary web script or HTML via the 1 absendername, 2 absenderemail, or 3 absendernachricht parameter to the content page; 4...

4.3CVSS5.9AI score0.00868EPSS

Exploits3References1

CNVD•added 2016/09/21 12:0 a.m.•1 views

Kajona cross-site scripting vulnerability (CNVD-2016-08093)

Kajona is an open source CMS written in PHP. A cross-site scripting attack vulnerability exists in Kajona version 4.7. An attacker can use this vulnerability to obtain cookies, inject keyloggers or bypass CSRF protection...

6.3AI score

Exploits0References1

CNVD•added 2016/09/21 12:0 a.m.•2 views

Kajona Directory Traversal Vulnerability

Kajona is an open source CMS written in PHP. A directory traversal vulnerability exists in Kajona version 4.7. An attacker can exploit this vulnerability to obtain information about files present on the system...

6.7AI score

Exploits0References1

exploitpack•added 2016/09/19 12:0 a.m.•32 views

Kajona 4.7 - Cross-Site Scripting Directory Traversal

Kajona 4.7 - Cross-Site Scripting Directory Traversal Security Advisory - Curesec Research Team 1. Introduction Affected Product: Kajona 4.7 Fixed in: 5.0 Fixed Version Link: https://www.kajona.de/en/Downloads/downloads.getkajona.html Vendor Website: https://www.kajona.de/ Vulnerability Type: XSS...

Exploits0

Exploit DB•added 2016/09/19 12:0 a.m.•49 views

Kajona 4.7 - Cross-Site Scripting / Directory Traversal

Security Advisory - Curesec Research Team 1. Introduction Affected Product: Kajona 4.7 Fixed in: 5.0 Fixed Version Link: https://www.kajona.de/en/Downloads/downloads.getkajona.html Vendor Website: https://www.kajona.de/ Vulnerability Type: XSS & Directory Traversal Remote Exploitable: Yes Reporte...

7.4AI score

Exploits0

0day.today•added 2016/09/19 12:0 a.m.•33 views

Kajona 4.7 - Cross-Site Scripting / Directory Traversal

Exploit for php platform in category web applications 1. Introduction Affected Product: Kajona 4.7 Fixed in: 5.0 Fixed Version Link: https://www.kajona.de/en/Downloads/downloads.getkajona.html Vendor Website: https://www.kajona.de/ Vulnerability Type: XSS & Directory Traversal Remote Exploitable:...

7.1AI score

Exploits0

Packet Storm•added 2016/09/16 12:0 a.m.•38 views

Kajona 4.7 Cross Site Scripting / Directory Traversal

Security Advisory - Curesec Research Team 1. Introduction Affected Product: Kajona 4.7 Fixed in: 5.0 Fixed Version Link: https://www.kajona.de/en/Downloads/ downloads.getkajona.html Vendor Website: https://www.kajona.de/ Vulnerability Type: XSS & Directory Traversal Remote Exploitable: Yes Report...

0.1AI score

Exploits0

CNVD•added 2015/01/15 12:0 a.m.•2 views

Kajona Cross-Site Scripting Vulnerability

Kajona is a set of Kajona team based on PHP and MySql open source content management framework. Kajona version before 4.6.3 cross-site scripting vulnerability , allowing remote attackers to inject arbitrary web script or HTML through the indexphp operation parameter...

4.3CVSS6.1AI score0.004EPSS

Exploits1References1

NVD•added 2015/01/08 3:59 p.m.•9 views

CVE-2015-0917

Cross-site scripting XSS vulnerability in the backend in Kajona before 4.6.3 allows remote attackers to inject arbitrary web script or HTML via the action parameter to index.php...

4.3CVSS5.7AI score0.004EPSS

Exploits1References5

Prion•added 2015/01/08 3:59 p.m.•11 views

Cross site scripting

Cross-site scripting XSS vulnerability in the backend in Kajona before 4.6.3 allows remote attackers to inject arbitrary web script or HTML via the action parameter to index.php...

4.3CVSS6.2AI score0.004EPSS

Exploits1References5Affected Software1

Cvelist•added 2015/01/08 3:0 p.m.•13 views

CVE-2015-0917

Cross-site scripting XSS vulnerability in the backend in Kajona before 4.6.3 allows remote attackers to inject arbitrary web script or HTML via the action parameter to index.php...

5.7AI score0.004EPSS

Exploits1References5

CVE•added 2015/01/08 3:0 p.m.•44 views

CVE-2015-0917

Summary: CVE-2015-0917 is an XSS vulnerability in Kajona CMS backend before version 4.6.3, exploitable via the action parameter to index.php. Connected sources confirm the affected product and vulnerable parameter; no explicit remediation details are provided in the supplied documents. The exploi...

4.3CVSS5.9AI score0.004EPSS

Exploits1References5Affected Software1

CNVD•added 2015/01/08 12:0 a.m.•2 views

Kajona 'admin.php' Cross-Site Scripting Vulnerability

Kajona is a set of Kajona team based on PHP and MySql open source content management framework. A cross-site scripting vulnerability exists in Kajona 'admin.php' because it fails to properly filter user-supplied input. An attacker may be able to exploit this vulnerability to execute arbitrary...

6.6AI score

Exploits0References1

0day.today•added 2015/01/07 12:0 a.m.•28 views

Kajona CMS 4.6 Cross Site Scripting Vulnerability

Kajona CMS version 4.6 suffers from a cross site scripting vulnerability. Author: Steffen Rösemann Affected Software: CMS Kajona v. 4.6 Vendor URL: https://www.kajona.de Vendor Status: solved CVE-ID: - ========================== Vulnerability Description: ========================== The CMS Kajona...

6.7AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by