Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
jupiter cms jupiter cms 1.1.5 vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2006-2105
Directory traversal vulnerability in index.php in Jupiter CMS 1.1.4 and 1.1.5 allows remote malicious users to read arbitrary files via ".." sequences terminated by a %00 (null) character in the n parameter.
Jupiter Cms Jupiter Cms 1.1.4
Jupiter Cms Jupiter Cms 1.1.5
4.3
CVSSv2
CVE-2006-1223
Cross-site scripting (XSS) vulnerability in Jupiter Content Manager 1.1.5 and previous versions allows remote malicious users to inject arbitrary web script or HTML via a Javascript URI in the image BBcode tag.
Jupiter Cms Jupiter Cms 1.1.4
Jupiter Cms Jupiter Cms
1 EDB exploit
7.5
CVSSv2
CVE-2006-4428
PHP remote file inclusion vulnerability in index.php in Jupiter CMS 1.1.5 allows remote malicious users to execute arbitrary PHP code via a URL in the template parameter. NOTE: CVE disputes this claim, since the $template variable is defined as a static value before it is referen...
Jupiter Cms Jupiter Cms 1.1.5
1 EDB exploit
2.6
CVSSv2
CVE-2006-1680
Jupiter CMS 1.1.5, when display_errors is enabled, allows remote malicious users to obtain the full server path via a direct request to modules/online.php.
Jupiter Cms Jupiter Cms 1.1.5
7.5
CVSSv2
CVE-2007-0971
Multiple SQL injection vulnerabilities in Jupiter CMS 1.1.5 allow remote malicious users to execute arbitrary SQL commands via the Client-IP HTTP header and certain other HTTP headers, which set the ip variable that is used in SQL queries performed by index.php and certain other ...
Jupiter Cms Jupiter Cms 1.1.5
1 EDB exploit
7.5
CVSSv2
CVE-2007-0972
Unrestricted file upload vulnerability in modules/emoticons.php in Jupiter CMS 1.1.5 allows remote malicious users to upload arbitrary files by modifying the HTTP request to send an image content type, and to omit is_guest and is_user parameters. NOTE: this issue might be related...
Jupiter Cms Jupiter Cms 1.1.5
1 EDB exploit
6.8
CVSSv2
CVE-2007-0973
Multiple cross-site scripting (XSS) vulnerabilities in index.php in Jupiter CMS 1.1.5 allow remote malicious users to inject arbitrary web script or HTML via the Referer HTTP header and certain other HTTP headers, which are displayed without proper sanitization when an administra...
Jupiter Cms Jupiter Cms 1.1.5
5.1
CVSSv2
CVE-2007-0986
PHP remote file inclusion vulnerability in index.php in Jupiter CMS 1.1.5, when PHP 5.0.0 or later is used, allows remote malicious users to execute arbitrary PHP code via an ftp URL in the n parameter.
Jupiter Cms Jupiter Cms 1.1.5
1 EDB exploit
7.5
CVSSv2
CVE-2007-0987
Directory traversal vulnerability in index.php in Jupiter CMS 1.1.5 allows remote malicious users to include and execute arbitrary local files via a .. (dot dot), or an absolute pathname, in the n parameter.
Jupiter Cms Jupiter Cms 1.1.5
1 EDB exploit
5
CVSSv2
CVE-2006-4873
Jupiter CMS allows remote malicious users to obtain sensitive information via a direct request for (1) includes/functions.php, (2) modules/register.php, (3) modules/poll.php, (4) modules/panel.php, (5) modules/pm.php, (6) modules/news.php, (7) modules/templates_change.php, (8) mo...
Jupiter Cms Jupiter Cms 1.1.5
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injection
firmware
CVE-2006-4304
CVE-2024-32878
CVE-2024-31502
XSS
CVE-2024-3059
CVE-2024-33692
CVE-2024-3400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »