RSS   Vulnerabilities for 'Calimero.cms'   RSS

2008-02-13
 
CVE-2008-0749

CWE-79
 

 
Cross-site scripting (XSS) vulnerability in index.php in Calimero.CMS 3.3 allows remote attackers to inject arbitrary web script or HTML via the id parameter in a calimero_webpage action.

 
2007-06-05
 
CVE-2007-3053

CWE-Other
 

 
Session fixation vulnerability in Calimero.CMS 3.3.1232 and earlier allows remote attackers to hijack web sessions by setting the PHPSESSID parameter.

 


Copyright 2024, cxsecurity.com

 

Back to Top