RSS   Vulnerabilities for 'Itcms'   RSS

2008-05-14
 
CVE-2008-2192

CWE-94
 
 
Static code injection vulnerability in box/minichat/boxpop.php in IT!CMS (aka itcms) 1.9 allows remote attackers to inject arbitrary PHP code into box/MiniChat/data/shouts.php via the shout parameter.

 
2007-07-31
 
CVE-2007-4115

CWE-Other
 
 
Multiple cross-site scripting (XSS) vulnerabilities in IT!CMS (itcms) 0.2 allow remote attackers to inject arbitrary web script or HTML via the wndtitle parameter to (1) lang-en.php, (2) menu-ed.php, or (3) titletext-ed.php.

 

 >>> Vendor: Itcms 2 Products
Itcms
Vigile cms

Copyright 2024, cxsecurity.com

 

Back to Top