RSS   Podatności dla 'Lucidcms'   RSS

2006-04-06
 
CVE-2006-1635

 

 
LucidCMS 2.0.0 RC4 allows remote attackers to obtain sensitive information via a direct request to /lucid_phplib/translator.php, which reveals the path in an error message.

 
 
CVE-2006-1634

 

 
Cross-site scripting (XSS) vulnerability in index.php in LucidCMS 2.0.0 RC4 allows remote attackers to inject arbitrary web script or HTML via the command parameter.

 
2005-10-04
 
CVE-2005-3130

 

 
SQL injection vulnerability in lucidCMS 1.0.11 allows remote attackers to execute arbitrary SQL commands via the login field.

 
 
CVE-2005-3127

 

 
Cross-site scripting (XSS) vulnerability in index.php in lucidCMS 1.0.11 allows remote attackers to inject arbitrary web script or HTML via the query string.

 


Copyright 2021, cxsecurity.com

 

Back to Top