Jetbox Cms Security Vulnerabilities and Issues — Jetbox Cms CVE List

Lucene search

JetboxJetbox Cms

4 matches found

CVE•added 2006/09/13 10:7 p.m.•36 views

CVE-2006-4738

PHP remote file inclusion vulnerability in phpthumb.php in Jetbox CMS allows remote attackers to execute arbitrary PHP code via a URL in the includes_path parameter. NOTE: The relative_script_path vector is already covered by CVE-2006-2270.

7.5CVSS7.6AI score0.11418EPSS

CVE•added 2006/09/13 10:7 p.m.•35 views

CVE-2006-4739

Multiple cross-site scripting (XSS) vulnerabilities in Jetbox CMS allow remote attackers to inject arbitrary web script or HTML, as demonstrated via the OriginalImageData parameter to phpthumb.php.

2.6CVSS6.1AI score0.00333EPSS

CVE•added 2006/09/13 10:7 p.m.•32 views

CVE-2006-4737

SQL injection vulnerability in index.php in Jetbox CMS allows remote attackers to inject arbitrary web script or HTML via the item parameter. NOTE: The view vector is already covered by CVE-2006-3586.2.

7.5CVSS7.4AI score0.00785EPSS

CVE•added 2006/09/13 10:7 p.m.•29 views

CVE-2006-4740

Jetbox CMS allows remote attackers to obtain sensitive information via a direct request for certain files, which reveal the path in an error message.

5CVSS6.5AI score0.00389EPSS