CVE-2006-6218

CVE-2006-6218 relates to dev4u CMS, where index.php is vulnerable to SQL injection via the (1) seite_id, (2) gruppe_id.php, and (3) go_target parameters. The root cause is improper handling/sanitization of input used in SQL queries, allowing remote attackers to alter the intended query and execut...

CVE-2006-6219

dev4u CMS is affected by multiple cross-site scripting (XSS) flaws in index.php, exploitable via the parameters (1) user_name, (2) passwort, and (3) go_target. The issue allows remote attackers to inject arbitrary web script or HTML. CVSSv2 base score is 6.8 (MEDIUM), with NETWORK attack vector, ...

CVE-2010-0951

The CVE (CVE-2010-0951) affects dev4u CMS, specifically the go_target.php component, where a SQL injection vulnerability allows remote attackers to execute arbitrary SQL commands via the kontent_id parameter. According to NVD, this yields a CVSSv2 base score of 7.5 (HIGH) with network exposure, l...