RSS   Vulnerabilities for 'Expandable home page cms'   RSS

2006-09-13
 
CVE-2006-4752

CWE-Other
 

 
Laurentiu Matei eXpandable Home Page (XHP) CMS 0.5.1 allows remote attackers to obtain the installation path via a query to the engine module, probably with an invalid action parameter.

 
 
CVE-2006-4751

CWE-Other
 

 
Cross-site scripting (XSS) vulnerability in index.php in Laurentiu Matei eXpandable Home Page (XHP) CMS 0.5.1 allows remote attackers to inject arbitrary web script or HTML via the errcode parameter.

 


Copyright 2024, cxsecurity.com

 

Back to Top