110 matches found
CVE-2004-2362
PHPX 3.2.6 and earlier allows remote attackers to obtain the physical path of PHPX via a null or invalid value in the limit parameter, which leaks the pathname in a database error message, as demonstrated using forums.php...
PT-2004-3257 · Phpx · Phpx
Name of the Vulnerable Software and Affected Versions: PHPX versions 3.0 through 3.2.6 Description: The issue allows remote attackers to conduct cross-site scripting XSS attacks via hex-encoded tags. This is achieved by bypassing the check for literal "", "", and "" characters in the checkURI...
PT-2004-3258 · Phpx · Phpx
Name of the Vulnerable Software and Affected Versions: PHPX versions 3.0 through 3.2.6 Description: A cross-site request forgery CSRF issue allows remote attackers to execute arbitrary commands via specific URLs that are automatically executed on behalf of the administrator. The affected URLs...
CVE-2004-0249
PHPX 2.0 through 3.2.4 allows remote attackers to gain access to other accounts by modifying the cookie's PXL variable to reference another userID...
CVE-2004-0248
Cross-site scripting vulnerability XSS in PHPX 3.2.3 allows remote attackers to execute arbitrary script as other users by injecting arbitrary HTML or script into 1 keywords argument of main.inc.php, 2 body argument of help.inc.php, or 3 the subject field in Personal Messages and Forum...
phpx326.txt
Vendor : PHPX URL : http://www.phpx.org Version : PHPX 3.26 && Earlier Risk : Multiple Vulnerabilities Description: PHPX is a constantly evolving and changing Content Management System CMS. PHPX is highly customizable and high powered all in one system. PHPX provides content management combined...
PHPX 3.x - page.php Cross-Site Request Forgery Arbitrary Command Execution
PHPX 3.x - page.php Cross-Site Request Forgery Arbitrary Command Execution source: https://www.securityfocus.com/bid/10284/info It has been reported that PHPX is affected by multiple administrator command execution vulnerabilities. These issues are due to a failure of the application to properly...
PHPX 3.x - news.php Cross-Site Request Forgery Arbitrary Command Execution
PHPX 3.x - news.php Cross-Site Request Forgery Arbitrary Command Execution source: https://www.securityfocus.com/bid/10284/info It has been reported that PHPX is affected by multiple administrator command execution vulnerabilities. These issues are due to a failure of the application to properly...
Vulnerabilities In PHPX 3.26 And Earlier
Vendor : PHPX URL : http://www.phpx.org Version : PHPX 3.26 && Earlier Risk : Multiple Vulnerabilities Description: PHPX is a constantly evolving and changing Content Management System CMS. PHPX is highly customizable and high powered all in one system. PHPX provides content management combined...
PHPX 3.x - images.php Cross-Site Request Forgery Arbitrary Command Execution
PHPX 3.x - images.php Cross-Site Request Forgery Arbitrary Command Execution source: https://www.securityfocus.com/bid/10284/info It has been reported that PHPX is affected by multiple administrator command execution vulnerabilities. These issues are due to a failure of the application to properl...
PHPX 3.x - user.php Cross-Site Request Forgery Arbitrary Command Execution
PHPX 3.x - user.php Cross-Site Request Forgery Arbitrary Command Execution source: https://www.securityfocus.com/bid/10284/info It has been reported that PHPX is affected by multiple administrator command execution vulnerabilities. These issues are due to a failure of the application to properly...
PHPX 3.x - Multiple Cross-Site Scripting Vulnerabilities
PHPX 3.x - Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/10283/info It has been reported that PHPX is affected by multiple cross-site scripting vulnerabilities. These issues are due to a failure of the application to properly sanitize user-supplied URI...
PHPX 3.x - forums.php Cross-Site Request Forgery Arbitrary Command Execution
PHPX 3.x - forums.php Cross-Site Request Forgery Arbitrary Command Execution source: https://www.securityfocus.com/bid/10284/info It has been reported that PHPX is affected by multiple administrator command execution vulnerabilities. These issues are due to a failure of the application to properl...
PHPX 3.x - '/images.php' Cross-Site Request Forgery / Arbitrary Command Execution
source: https://www.securityfocus.com/bid/10284/info It has been reported that PHPX is affected by multiple administrator command execution vulnerabilities. These issues are due to a failure of the application to properly validate access to administrative commands. This issue could permit a remot...
PHPX 3.x - Multiple Cross-Site Scripting Vulnerabilities
source: https://www.securityfocus.com/bid/10283/info It has been reported that PHPX is affected by multiple cross-site scripting vulnerabilities. These issues are due to a failure of the application to properly sanitize user-supplied URI input. These issues could permit a remote attacker to creat...
PHPX 3.x - '/news.php' Cross-Site Request Forgery / Arbitrary Command Execution
source: https://www.securityfocus.com/bid/10284/info It has been reported that PHPX is affected by multiple administrator command execution vulnerabilities. These issues are due to a failure of the application to properly validate access to administrative commands. This issue could permit a remot...
PHPX 3.x - '/page.php' Cross-Site Request Forgery / Arbitrary Command Execution
source: https://www.securityfocus.com/bid/10284/info It has been reported that PHPX is affected by multiple administrator command execution vulnerabilities. These issues are due to a failure of the application to properly validate access to administrative commands. This issue could permit a remot...
PHPX 3.x - '/user.php' Cross-Site Request Forgery / Arbitrary Command Execution
source: https://www.securityfocus.com/bid/10284/info It has been reported that PHPX is affected by multiple administrator command execution vulnerabilities. These issues are due to a failure of the application to properly validate access to administrative commands. This issue could permit a remot...
PHPX 3.x - '/forums.php' Cross-Site Request Forgery / Arbitrary Command Execution
source: https://www.securityfocus.com/bid/10284/info It has been reported that PHPX is affected by multiple administrator command execution vulnerabilities. These issues are due to a failure of the application to properly validate access to administrative commands. This issue could permit a remot...
PHPX 3.26 - Multiple Vulnerabilities
PHPX 3.26 - Multiple Vulnerabilities PHPX Multiple Vulnerabilities Vendor: PHPX Product: PHPX Version: ","","",""; foreach$checkArray as $c...