SPIP cross-site scripting vulnerability

SPIP is a web-based content publishing system. A cross-site scripting vulnerability exists in SPIP version 3.1.13 and prior versions, which originates in /spip.php. The vulnerability stems from the program's lack of data validation filtering of user-supplied data and output. An attacker could use...

SPIP remote code execution vulnerability

SPIP is a Web-based content publishing system used primarily for online collaboration. A remote code execution vulnerability exists in versions of SPIP prior to 3.2.8, which are primarily used for online collaboration. The vulnerability stems from the oups parameter of /ecrire not properly...

SPIP Information Disclosure Vulnerability (CNVD-2022-21820)

SPIP is a Web-based content distribution system used primarily for online collaboration. A security vulnerability exists in SPIP, which stems from a web-based system or product that does not properly restrict access to resources from unauthorized roles. An unauthenticated attacker could use this...

SPIP interfaces.php cross-site scripting vulnerability

SPIP is a web-based content publishing system. A cross-site scripting vulnerability exists in SPIP, which stems from a lack of proper validation of client-side data in the interfaces.php component of the WEB application. An attacker could exploit this vulnerability to execute client-side code...

Indexhibit Cross-Site Request Forgery Vulnerability (CNVD-2021-67907)

Indexhibit is a web-based content management system. A cross-site request forgery vulnerability exists in Indexhibit version 2.1.5. An attacker can exploit this vulnerability to arbitrarily delete an administrator account...

WBCE 'begriff' Cross-Site Scripting Vulnerability

WBCE is an open source content management system CMS developed using PHP/MySQL. A cross-site scripting vulnerability exists in WBCE version 1.1.11. A remote attacker can exploit this vulnerability to obtain or tamper with information with the help of the 'begriff' POST parameter in...

Symphony CMS 2.1.2 - Blind SQL Injection

No description provided by source. -------------------------------------------------------------------------------------------- 20110424 - Justanotherhacker.com : Symphony-cms blind sql injection JAHx111 - http://www.justanotherhacker.com/advisories/JAHx111.txt...

IBM DB2 Content Manager eClient Detection

The remote web server hosts IBM DB2 Content Manager eClient, a web- based content management application. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid70074; scriptversion"1.2"; scriptcvsdate"Date: 2019/11/25"; scriptnameenglish:"IBM DB2 Content Manager eClient...

Sitecore CMS / Experience Platform (XP) Web Detection

Sitecore CMS / Experience Platform XP, a web-based content management system, was detected on the remote host. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid55978; scriptversion"1.8"; scriptsetattributeattribute:"pluginmodificationdate", value:"2022/10/12";...

Symphony CMS 2.1.2 Blind SQL Injection

Exploit for php platform in category web applications Symphony is a web-based content management system CMS that enables users to create and manage websites and web applications of all shapes and sizes?from the simplest of blogs to bustling news sites and feature-packed social networks. Taken fro...

phpwcms Detection

The remote web server hosts phpwcms, a web-based content management system written in PHP. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid48202; scriptversion"1.8"; scriptsetattributeattribute:"pluginmodificationdate", value:"2022/06/01"; scriptnameenglish:"phpwcms...

Land Down Under < 802 events.php SQL Injection

Binary data 3209.prm...