4 matches found
CVE-2025-27411 REDAXO allows Arbitrary File Upload in the mediapool page
REDAXO is a PHP-based CMS. In Redaxo before 5.18.3, the mediapool/media page is vulnerable to arbitrary file upload. This vulnerability is fixed in 5.18.3...
GHSA-MFX6-JVW8-53FM Duplicate Advisory: Stored XSS in REDAXO
Duplicate Advisory This advisory has been withdrawn because it is a duplicate of GHSA-7wj8-856p-qc9m. This link is maintained to preserve external references. Original Description A vulnerability was found in Redaxo CMS 5.18.1. It has been classified as problematic. Affected is an unknown functio...
Exploit for Cross-site Scripting in Redaxo
CVE-2024-50803 Stored XSS in mediapool feature of Redaxo A st...
EUVD-2006-2842
PHP remote file inclusion vulnerability in Redaxo 3.0 up to 3.2 allows remote attackers to execute arbitrary PHP code via a URL in the REXINCLUDEPATH parameter to imageresize/pages/index.inc.php...