Show filters
5 Total Results
Displaying 1-5 of 5
Sort by:
Attacker Value
Unknown

CVE-2017-14762

Disclosure Date: September 27, 2017 (last updated November 26, 2024)
In GeniXCMS 1.1.4, /inc/lib/Control/Backend/menus.control.php has XSS via the id parameter.
0
0
Attacker Value
Unknown

CVE-2017-14761

Disclosure Date: September 27, 2017 (last updated November 26, 2024)
In GeniXCMS 1.1.4, /inc/lib/backend/menus.control.php has XSS via the id parameter.
0
0
Attacker Value
Unknown

CVE-2017-14765

Disclosure Date: September 27, 2017 (last updated November 26, 2024)
In GeniXCMS 1.1.4, gxadmin/index.php has XSS via the Menu ID field in a page=menus request.
0
0
Attacker Value
Unknown

CVE-2017-14764

Disclosure Date: September 27, 2017 (last updated November 26, 2024)
In the Upload Modules page in GeniXCMS 1.1.4, remote authenticated users can execute arbitrary PHP code via a .php file in a ZIP archive of a module.
0
0
Attacker Value
Unknown

CVE-2017-14763

Disclosure Date: September 27, 2017 (last updated November 26, 2024)
In the Install Themes page in GeniXCMS 1.1.4, remote authenticated users can execute arbitrary PHP code via a .php file in a ZIP archive of a theme.
0
0