17 matches found
EUVD-2006-3048
Malware in sbrugna...
EUVD-2006-3047
Malware in sbrugna...
sixcms-dev.knowe.de XSS vulnerability
Open Bug Bounty ID: OBB-691948 Description| Value ---|--- Affected Website:| sixcms-dev.knowe.de Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| hidden until disclosure Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:|...
SixCMS 6.0 List.PHP Cross-Site Scripting Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/18393/info SixCMS is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script...
SixCMS 6.0 Detail.PHP Directory Traversal Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/18395/info SixCMS is prone to a directory-traversal vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit this vulnerability to retrieve arbitra...
CVE-2006-3050
Directory traversal vulnerability in detail.php in SixCMS 6.0, and other versions before 6.0.6patch2, allows remote attackers to read arbitrary files via a .. dot dot sequence and trailing null %00 byte in the template parameter...
CVE-2006-3051
Cross-site scripting XSS vulnerability in list.php in SixCMS 6.0, and other versions before 6.0.6patch2, allows remote attackers to inject arbitrary script code or HTML via the page parameter...
CVE-2006-3050
CVE-2006-3050 affects SixCMS 6.0 and earlier versions up to 6.0.6patch2. A directory traversal flaw in detail.php can be exploited by supplying a template parameter containing a .. sequence and a trailing null byte (%00), allowing remote attackers to read arbitrary files. The NVD metrics indicate...
CVE-2006-3050
Directory traversal vulnerability in detail.php in SixCMS 6.0, and other versions before 6.0.6patch2, allows remote attackers to read arbitrary files via a .. dot dot sequence and trailing null %00 byte in the template parameter...
CVE-2006-3051
Cross-site scripting XSS vulnerability in list.php in SixCMS 6.0, and other versions before 6.0.6patch2, allows remote attackers to inject arbitrary script code or HTML via the page parameter...
CVE-2006-3051
CVE-2006-3051 describes a cross-site scripting (XSS) flaw in SixCMS 6.0 and older builds before 6.0.6patch2. The vulnerability is in the list.php script where the page parameter can be manipulated to inject arbitrary script code or HTML. The impact is described as enabling execution of injected s...
[MajorSecurity #17] SixCMS <= 6 - Multiple XSS and directory traversal vulnerabilities
MajorSecurity 17 SixCMS = 6 - Multiple XSS and directory traversal vulnerabilities ---------------------------------------------- Software: SixCMS Version: =6 Type: Cross site scripting Date: June, 12th 2006 Vendor: Six Offene Systeme GmbH Page: http://www.sixcms.de Credits:...
major_rls17.txt
MajorSecurity 17 SixCMS = 6 - Multiple XSS and directory traversal vulnerabilities ---------------------------------------------- Software: SixCMS Version: =6 Type: Cross site scripting Date: June, 12th 2006 Vendor: Six Offene Systeme GmbH Page: http://www.sixcms.de Credits:...
SixCMS 6.0 - 'list.php' Cross-Site Scripting
source: https://www.securityfocus.com/bid/18393/info SixCMS is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script code execute in the browser of an...
SixCMS 6.0 - detail.php Directory Traversal
SixCMS 6.0 - detail.php Directory Traversal source: https://www.securityfocus.com/bid/18395/info SixCMS is prone to a directory-traversal vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit this vulnerability to retrie...
SixCMS 6.0 - 'detail.php' Directory Traversal
source: https://www.securityfocus.com/bid/18395/info SixCMS is prone to a directory-traversal vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit this vulnerability to retrieve arbitrary files from the vulnerable syste...
SixCMS 6.0 - list.php Cross-Site Scripting
SixCMS 6.0 - list.php Cross-Site Scripting source: https://www.securityfocus.com/bid/18393/info SixCMS is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrar...