Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ez ez publish 3.7.12 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2010-2672
Multiple SQL injection vulnerabilities in eZ Publish 3.7.0 up to and including 4.2.0 allow remote malicious users to execute arbitrary SQL commands via the (1) SectionID and (2) SearchTimestamp parameters to the search feature and the (3) SearchContentClassAttributeID parameter t...
Ez Ez Publish 3.7.0
Ez Ez Publish 3.7.3
Ez Ez Publish 3.7.4
Ez Ez Publish 3.7.6
Ez Ez Publish 4.2.0
Ez Ez Publish 3.7.2
Ez Ez Publish 3.7.8
Ez Ez Publish 3.7.9
Ez Ez Publish 3.7.10
Ez Ez Publish 3.7.11
Ez Ez Publish 3.7.5
Ez Ez Publish 3.7.7
Ez Ez Publish 3.7.12
Ez Ez Publish 3.7.1
NA
CVE-2010-2671
Cross-site scripting (XSS) vulnerability in advancedsearch.php in eZ Publish 3.7.0 up to and including 4.2.0 allows remote malicious users to inject arbitrary web script or HTML via the subTreeItem parameter.
Ez Ez Publish 3.7.6
Ez Ez Publish 3.7.7
Ez Ez Publish 3.7.8
Ez Ez Publish 3.7.9
Ez Ez Publish 3.7.0
Ez Ez Publish 3.7.4
Ez Ez Publish 3.7.11
Ez Ez Publish 4.2.0
Ez Ez Publish 3.7.1
Ez Ez Publish 3.7.2
Ez Ez Publish 3.7.3
Ez Ez Publish 3.7.5
Ez Ez Publish 3.7.10
Ez Ez Publish 3.7.12
NA
CVE-2005-4854
eZ publish 3.5 up to and including 3.7 prior to 20050830 does not use a folder's read permissions to restrict notifications, which allows remote authenticated users to obtain sensitive information about changes to content in arbitrary folders.
Ez Ez Publish 3.5.2
Ez Ez Publish 3.5.3
Ez Ez Publish 3.5.4
Ez Ez Publish 3.5.5
Ez Ez Publish 3.6.6
Ez Ez Publish 3.6.7
Ez Ez Publish 3.6.8
Ez Ez Publish 3.6.9
Ez Ez Publish 3.6.1
Ez Ez Publish 3.6.10
Ez Ez Publish 3.6.11
Ez Ez Publish 3.6.12
Ez Ez Publish 3.7.12
Ez Ez Publish 3.7.2
Ez Ez Publish 3.7.3
Ez Ez Publish 3.7.4
Ez Ez Publish 3.5.1
Ez Ez Publish 3.5.11
Ez Ez Publish 3.5.6
Ez Ez Publish 3.5.8
Ez Ez Publish 3.6.0
Ez Ez Publish 3.6.2
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
HTML injection
CVE-2024-35894
SQL
CVE-2024-5105
CVE-2014-100005
CVE-2024-35895
unauthorized
CVE-2024-22120
CVE-2024-35890
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started