Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
fork-cms fork cms 3.2.4 vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2012-1209
Cross-site scripting (XSS) vulnerability in backend/core/engine/base.php in Fork CMS 3.2.4 and possibly other versions prior to 3.2.5 allows remote malicious users to inject arbitrary web script or HTML via the highlight parameter.
Fork-cms Fork Cms 3.2.4
5
CVSSv2
CVE-2012-1207
Directory traversal vulnerability in frontend/core/engine/javascript.php in Fork CMS 3.2.4 and possibly other versions prior to 3.2.5 allows remote malicious users to read arbitrary files via a .. (dot dot) in the module parameter to frontend/js.php.
Fork-cms Fork Cms 3.2.4
4.3
CVSSv2
CVE-2012-1208
Multiple cross-site scripting (XSS) vulnerabilities in backend/core/engine/base.php in Fork CMS 3.2.4 and possibly other versions prior to 3.2.5 allow remote malicious users to inject arbitrary web script or HTML via the (1) report parameter to blog/settings or (2) error paramete...
Fork-cms Fork Cms 3.2.4
2 EDB exploits
4.3
CVSSv2
CVE-2012-5164
Multiple cross-site scripting (XSS) vulnerabilities in Fork CMS prior to 3.2.7 allow remote malicious users to inject arbitrary web script or HTML via the term parameter to (1) autocomplete.php, (2) search/ajax/autosuggest.php, (3) livesuggest.php, or (4) save.php in frontend/mod...
Fork-cms Fork Cms 2.6.2
Fork-cms Fork Cms 2.6.3
Fork-cms Fork Cms 2.3.1
Fork-cms Fork Cms 2.0.1
Fork-cms Fork Cms 2.6.12
Fork-cms Fork Cms 3.1.0
Fork-cms Fork Cms 2.6.4
Fork-cms Fork Cms 2.6.7
Fork-cms Fork Cms 3.1.6
Fork-cms Fork Cms 3.2.1
Fork-cms Fork Cms 2.4.0
Fork-cms Fork Cms 2.4.1
Fork-cms Fork Cms 2.0.2
Fork-cms Fork Cms 3.1.2
Fork-cms Fork Cms 3.0.0
Fork-cms Fork Cms 2.6.9
Fork-cms Fork Cms 2.6.6
Fork-cms Fork Cms 3.2.5
Fork-cms Fork Cms 3.2.4
Fork-cms Fork Cms 3.2.2
Fork-cms Fork Cms 3.1.9
Fork-cms Fork Cms 2.5.1
NA
CVE-2012-1304
Fork CMS 3.2.4 - Local File Inclusion / Cross-Site Scripting
2 EDB exploits
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48654
CVE-2024-2757
authentication bypass
CVE-2024-3194
CVE-2024-33640
CVE-2024-21111
dos
insecure direct object reference
CVE-2024-21345
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started