Kasseler Cms Security Vulnerabilities and Issues — Kasseler Cms CVE List

Lucene search

Kasseler-cmsKasseler Cms

3 matches found

CVE•added 2008/09/30 6:15 p.m.•45 views

CVE-2008-4356

Multiple SQL injection vulnerabilities in Kasseler CMS 1.1.0 and 1.2.0 allow remote attackers to execute arbitrary SQL commands via (1) the nid parameter to index.php in a View action to the News module; (2) the vid parameter to index.php in a Result action to the Voting module; (3) the fid paramet...

7.5CVSS8.5AI score0.00144EPSS

CVE•added 2008/07/09 7:33 p.m.•33 views

CVE-2008-3088

Cross-site scripting (XSS) vulnerability in the Files module in Kasseler CMS 1.3.0 and 1.3.1 Lite allows remote attackers to inject arbitrary web script or HTML via the cid parameter in a Category action to index.php.

4.3CVSS5.7AI score0.01458EPSS

CVE•added 2008/07/09 7:33 p.m.•29 views

CVE-2008-3087

Directory traversal vulnerability in Kasseler CMS 1.3.0 allows remote attackers to read arbitrary files via a .. (dot dot) in the file parameter to index.php, possibly related to the phpManual module.

5CVSS6.7AI score0.01914EPSS