Vulnerabilities for Clean cms (...) - CXSECURITY.COM

Vulnerabilities for 'Clean cms'

2008-12-01

CVE-2008-5290

CWE-79

Cross-site scripting (XSS) vulnerability in full_txt.php in Werner Hilversum Clean CMS 1.5 allows remote attackers to inject arbitrary web script or HTML via the id parameter.

CVE-2008-5289

CWE-89

SQL injection vulnerability in full_txt.php in Werner Hilversum Clean CMS 1.5 allows remote attackers to execute arbitrary SQL commands via the id parameter.

>>> Vendor: Scripts4you 2 Products

Copyright 2024, cxsecurity.com