Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
toenda software development toendacms 0.6.2 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2006-3362
Unrestricted file upload vulnerability in connectors/php/connector.php in FCKeditor mcpuk file manager, as used in (1) Geeklog 1.4.0 up to and including 1.4.0sr3, (2) toendaCMS 1.0.0 Shizouka Stable and previous versions, (3) WeBid 0.5.4, and possibly other products, when install...
Geeklog Geeklog 1.4.0 Sr3
Toenda Software Development Toendacms 0.6.1
Geeklog Geeklog 1.4.0 Sr1
Geeklog Geeklog 1.4.0 Sr2
Geeklog Geeklog 1.4.0
Toenda Software Development Toendacms 1.0
Toenda Software Development Toendacms 0.6.2
Toenda Software Development Toendacms 0.7
1 EDB exploit
NA
CVE-2005-3550
Directory traversal vulnerability in admin.php in toendaCMS prior to 0.6.2 allows remote malicious users to access arbitrary files via a .. (dot dot) in the id_user parameter.
Toenda Software Development Toendacms
1 EDB exploit
NA
CVE-2005-3551
toendaCMS prior to 0.6.2 stores user account and session data in the web root directory, which allows remote malicious users to obtain sensitive information via a direct request to the appropriate XML file.
Toenda Software Development Toendacms
NA
CVE-2005-4422
Unrestricted file upload vulnerability in toendaCMS prior to 0.6.2 Stable allows remote authenticated administrators to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in data/images/albums.
Toenda Software Development Toendacms 0.6.1
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
cross-site request forgery
CVE-2024-34351
CVE-2024-1076
CVE-2024-25522
CVE-2024-34547
CVE-2024-4644
unauthorized
remote
CVE-2024-4671
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started