Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
genixcms genixcms vulnerabilities and exploits
(subscribe to this query)
6.5
CVSSv2
CVE-2017-8377
GeniXCMS 1.0.2 has SQL Injection in inc/lib/Control/Backend/menus.control.php via the menuid parameter.
Genixcms Genixcms 1.0.2
3.5
CVSSv2
CVE-2017-14740
Cross-site scripting (XSS) vulnerability in GeniXCMS 1.1.0 allows remote authenticated users to inject arbitrary web script or HTML via the Menu ID when adding a menu.
Genixcms Genixcms 1.1.0
4.3
CVSSv2
CVE-2017-14761
In GeniXCMS 1.1.4, /inc/lib/backend/menus.control.php has XSS via the id parameter.
Genixcms Genixcms 1.1.4
4.3
CVSSv2
CVE-2017-14762
In GeniXCMS 1.1.4, /inc/lib/Control/Backend/menus.control.php has XSS via the id parameter.
Genixcms Genixcms 1.1.4
6.5
CVSSv2
CVE-2017-14763
In the Install Themes page in GeniXCMS 1.1.4, remote authenticated users can execute arbitrary PHP code via a .php file in a ZIP archive of a theme.
Genixcms Genixcms 1.1.4
6.5
CVSSv2
CVE-2017-14764
In the Upload Modules page in GeniXCMS 1.1.4, remote authenticated users can execute arbitrary PHP code via a .php file in a ZIP archive of a module.
Genixcms Genixcms 1.1.4
4.3
CVSSv2
CVE-2017-14765
In GeniXCMS 1.1.4, gxadmin/index.php has XSS via the Menu ID field in a page=menus request.
Genixcms Genixcms 1.1.4
6.5
CVSSv2
CVE-2017-5346
SQL injection vulnerability in inc/lib/Control/Backend/posts.control.php in GeniXCMS 0.0.8 allows remote authenticated administrators to execute arbitrary SQL commands via the id parameter to gxadmin/index.php.
Genixcms Genixcms 0.0.8
7.5
CVSSv2
CVE-2017-5959
CSRF token bypass in GeniXCMS prior to 1.0.2 could result in escalation of privileges. The forgotpassword.php page can be used to acquire a token.
Metalgenix Genixcms
6.5
CVSSv2
CVE-2017-6065
SQL injection vulnerability in inc/lib/Control/Backend/menus.control.php in GeniXCMS up to and including 1.0.2 allows remote authenticated users to execute arbitrary SQL commands via the order parameter.
Metalgenix Genixcms
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-3400
deserialization
CVE-2024-21788
CVE-2023-42433
CVE-2024-21841
CVE-2024-22095
local file inclusion
memory leak
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »