5 matches found
Manx 1.0.1 Directory Traversal
Manx cms.xml 1.0.1 simplexmlloadfile Directory Traversal Vulnerability Vendor: Paul Jova Product web page: http://manx.jovascript.com Affected version: 1.0.1 Summary: Manx is a Content Management System that uses xml text files to store the page contents, instead of a mysql database. Desc: Input...
Manx 1.0.1 Cross Site Scripting
Manx cms.xml 1.0.1 ajaxgetfilelisting.php Multiple XSS Vulnerabilities Vendor: Paul Jova Product web page: http://manx.jovascript.com Affected version: 1.0.1 Summary: Manx is a Content Management System that uses xml text files to store the page contents, instead of a mysql database. Desc: Input...
Manx cms.xml 1.0.1 (ajax_get_file_listing.php) Multiple XSS Vulnerabilities
Summary Manx is a Content Management System that uses xml text files to store the page contents, instead of a mysql database. Description Input thru the GET parameters 'limit' and 'searchfolder' in 'ajaxgetfilelisting.php' are not sanitized allowing the attacker to execute HTML code into user's...
Manx cms.xml 1.0.1 Multiple HTTP Response Splitting Vulnerabilities
Summary Manx is a Content Management System that uses xml text files to store the page contents, instead of a mysql database. Description Input passed to the POST parameter 'editorChoice' in 'adminblocks.php' and 'adminpages.php' and the POST parameter 'theme' in 'admincss.php', 'adminjs.php' and...
Manx 1.0.1 HTTP Response Splitting
==============+==============+==============+============== Manx cms.xml 1.0.1 Multiple HTTP Response Splitting Vulnerabilities Vendor: Paul Jova Product web page: http://manx.jovascript.com Affected version: 1.0.1 Summary: Manx is a Content Management System that uses xml text files to store the...