Vulnerabilities (CVE)

Filtered by vendor Xenis Subscribe

Filtered by product Xenis.creator Cms

Total 4 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2006-5800	1 Xenis	1 Xenis.creator Cms	2024-11-21	2.6 LOW	N/A
Cross-site scripting (XSS) vulnerability in default.asp in xenis.creator CMS allows remote attackers to inject arbitrary web script or HTML via the nav parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
CVE-2006-5799	1 Xenis	1 Xenis.creator Cms	2024-11-21	6.8 MEDIUM	N/A
Multiple cross-site scripting (XSS) vulnerabilities in default.asp in xenis.creator CMS allow remote attackers to inject arbitrary web script or HTML via the (1) contid or (2) search parameters.
CVE-2006-5798	1 Xenis	1 Xenis.creator Cms	2024-11-21	7.5 HIGH	N/A
SQL injection vulnerability in default.asp in Xenis.creator CMS allows remote attackers to execute arbitrary SQL commands via the contid parameter.
CVE-2006-5797	1 Xenis	1 Xenis.creator Cms	2024-11-21	7.5 HIGH	N/A
Multiple SQL injection vulnerabilities in default.asp in Xenis.creator CMS allow remote attackers to execute arbitrary SQL commands via the (1) nav, (2) s, or (3) print parameters.