Genixcms Security Vulnerabilities and Issues — Genixcms CVE List

Lucene search

GenixcmsGenixcms

3 matches found

CVE•added 2015/03/23 4:59 p.m.•43 views

CVE-2015-2678

Multiple cross-site scripting (XSS) vulnerabilities in MetalGenix GeniXCMS before 0.0.2 allow remote attackers to inject arbitrary web script or HTML via the (1) cat parameter in the categories page to gxadmin/index.php or (2) page parameter to index.php.

4.3CVSS5.9AI score0.12214EPSS

CVE•added 2018/04/26 2:29 p.m.•42 views

CVE-2017-14740

Cross-site scripting (XSS) vulnerability in GeniXCMS 1.1.0 allows remote authenticated users to inject arbitrary web script or HTML via the Menu ID when adding a menu.

4.8CVSS4.6AI score0.00171EPSS

CVE•added 2017/05/04 2:29 p.m.•31 views

CVE-2017-8780

GeniXCMS 1.0.2 has XSS triggered by a comment that is mishandled during a publish operation by an administrator, as demonstrated by a malformed P element.

4.8CVSS4.9AI score0.00219EPSS