Lucene search
K

4 matches found

seebug.org
seebug.org
added 2014/07/01 12:0 a.m.18 views

Alkacon OpenCMS 7.0.3 - logfileViewSettings.jsp filePath Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/28152/info Alkacon OpenCms is prone to multiple input-validation vulnerabilities, including one cross-site scripting issue and a file-disclosure issue, because the application fails to properly sanitize user-supplied inpu...

7.1AI score
Exploits0
NVD
NVD
added 2008/04/11 9:5 p.m.16 views

CVE-2008-1753

Cross-site scripting XSS vulnerability in system/workplace/admin/workplace/sessions.jsp in Alkacon OpenCMS 7.0.3 allows remote attackers to inject arbitrary web script or HTML via the searchfilter parameter, a different vector than CVE-2008-1510...

4.3CVSS5.5AI score0.01107EPSS
Exploits1References5
Exploit DB
Exploit DB
added 2008/03/08 12:0 a.m.29 views

Alkacon OpenCMS 7.0.3 - 'logfileViewSettings.jsp?filePath.0' Arbitrary File Access

source: https://www.securityfocus.com/bid/28152/info Alkacon OpenCms is prone to multiple input-validation vulnerabilities, including one cross-site scripting issue and a file-disclosure issue, because the application fails to properly sanitize user-supplied input. Attackers can exploit these...

7.4AI score
Exploits0
CVE
CVE
added 2008/02/27 7:0 p.m.51 views

CVE-2008-1045

Alkacon OpenCMS 7.0.3 contains a Cross-site Scripting (XSS) vulnerability in the file tree navigation function (system/workplace/views/explorer/tree_files.jsp). The issue allows remote attackers to inject arbitrary web script or HTML via the resource parameter. No other concrete details (such as ...

4.3CVSS5.7AI score0.01465EPSS
Exploits1References4Affected Software1
Rows per page
Query Builder