4 matches found
EUVD-2009-3795
Malware in sbrugna...
Creatiwity wityCMS cross-site scripting vulnerability (CNVD-2019-19292)
Creatiwity wityCMS is a lightweight PHP-based content management system CMS. A cross-site scripting vulnerability exists in the utilisateur menu in Creatiwity wityCMS version 0.6.2. The vulnerability stems from a lack of proper validation of client-side data by the WEB application. An attacker ca...
Directory traversal
Directory traversal vulnerability in include/processor.php in Greenwood PHP Content Manager 0.3.2 allows remote attackers to include and execute arbitrary local files via a .. dot dot in the contentpath parameter...
CVE-2009-3824
CVE-2009-3824 concerns Greenwood PHP Content Manager 0.3.2, where a directory traversal flaw in include/processor.php allows remote attackers to include and execute arbitrary local files by manipulating the content_path parameter using .. paths. This aligns with the NVD description and CVSS metri...