Auracms@1.5 Security Vulnerabilities and Issues — Auracms@1.5 CVE List

Lucene search

Arif SupriyantoAuracms1.5

2 matches found

CVE•added 2005/05/02 4:0 a.m.•35 views

CVE-2005-0656

Multiple cross-site scripting (XSS) vulnerabilities in auraCMS 1.5 allow remote attackers to inject arbitrary web script or HTML via the (1) hits parameter to hits.php, (2) query parameter to index.php, or (3) theCount parameter to counter.php.

4.3CVSS6AI score0.00409EPSS

CVE•added 2005/05/02 4:0 a.m.•31 views

CVE-2005-0655

auraCMS 1.5 allows remote attackers to obtain sensitive information via an HTTP request with an invalid id parameter to (1) teman.php, (2) hal.php, or (3) arsip.php, which reveals the path in a PHP error message.

5CVSS6.7AI score0.00462EPSS