Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
zanfi solutions zanfi cms lite vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2008-4159
SQL injection vulnerability in index.php in Jaw Portal and Zanfi CMS lite and allows remote malicious users to execute arbitrary SQL commands via the page (pageid) parameter.
Zanfi Solutions Jaw Portal
Zanfi Solutions Zanfi Cms Lite
1 EDB exploit
5
CVSSv2
CVE-2004-2196
Zanfi CMS lite 1.1 allows remote malicious users to obtain the full path of the web server via direct requests without required arguments to (1) adm_pages.php, (2) corr_pages.php, (3) del_block.php, (4) del_page.php, (5) footer.php, (6) home.php, and others.
Zanfi Solutions Zanfi Cms Lite 1.1
5
CVSSv2
CVE-2004-2195
PHP remote file inclusion vulnerability in index.php in Zanfi CMS lite 1.1 allows remote malicious users to execute arbitrary PHP code via the inc parameter.
Zanfi Solutions Zanfi Cms Lite 1.1
6.8
CVSSv2
CVE-2008-4158
Multiple directory traversal vulnerabilities in index.php in Zanfi CMS lite 1.2 allow remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the (1) flag and (2) inc parameters.
Zanfi Solutions Zanfi Cms Lite 1.2
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3380
CVE-2024-1694
local file inclusion
CVE-2024-5645
CVE-2024-24919
XSS
CVE-2024-36774
CVE-2024-21306
SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started