Vulnerabilities (CVE)

Filtered by vendor Fkrauthan Subscribe
Filtered by product Phoenix View Cms
Total 3 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2008-2534 1 Fkrauthan 1 Phoenix View Cms 2024-02-28 7.5 HIGH N/A
Directory traversal vulnerability in admin/admin_frame.php in Phoenix View CMS Pre Alpha2 and earlier allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the ltarget parameter.
CVE-2008-2533 1 Fkrauthan 1 Phoenix View Cms 2024-02-28 4.3 MEDIUM N/A
Multiple cross-site scripting (XSS) vulnerabilities in Phoenix View CMS Pre Alpha2 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) ltarget parameter to (a) admin/admin_frame.php and the (2) conf parameter to (b) gbuch.admin.php, (c) links.admin.php, (d) menue.admin.php, (e) news.admin.php, and (f) todo.admin.php in admin/module/.
CVE-2008-2535 1 Fkrauthan 1 Phoenix View Cms 2024-02-28 7.5 HIGH N/A
Multiple SQL injection vulnerabilities in Phoenix View CMS Pre Alpha2 and earlier allow remote attackers to execute arbitrary SQL commands via the del parameter to (1) gbuch.admin.php, (2) links.admin.php, (3) menue.admin.php, (4) news.admin.php, and (5) todo.admin.php in admin/module/.