Vulnerabilities (CVE)

Filtered by vendor Xhp Subscribe
Filtered by product Cms
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2006-1371 1 Xhp 1 Cms 2024-11-21 9.0 HIGH N/A
Laurentiu Matei eXpandable Home Page (XHP) CMS 0.5 and earlier allows remote authenticated users to use the HTMLArea FileManager plugin to upload and execute arbitrary PHP files using (1) manager.php, (2) standalonemanager.php, and (3) images.php.