Lucene search
Forum OneSyntaxcms*
2 matches found
CVE-2006-5055
PHP remote file inclusion vulnerability in admin/testing/tests/0004_init_urls.php in syntaxCMS 1.1.1 through 1.3 allows remote attackers to execute arbitrary PHP code via a URL in the init_path parameter.
7.5CVSS7.5AI score0.0665EPSS
CVE-2005-4496
Cross-site scripting (XSS) vulnerability in search in SyntaxCMS 1.2.1 and earlier allows remote attackers to inject arbitrary web script or HTML via the search_query parameter.
4.3CVSS6AI score0.02503EPSS