EDB-4711webappsphpVERIFIZIERT

Falt4 CMS rc4 10.9.2007 - Multiple Vulnerabilities

H-Security Labs12/10/2007

Auf Exploit-DB ansehen Quelle auf GitLab ansehen

KI-AnalyseKI-gestützt

Exploit-Code

Exploit code not available in database

Quelle auf GitLab ansehen

CVE-2007-6311

NONE

SQL injection vulnerability in (1) index.php, and possibly (2) admin/index.php, in Falt4Extreme RC4 10.9.2007 allows remote attackers to execute arbitrary SQL commands via the nav_ID parameter.

12/11/2007CWE-89

CVE-2007-6310

NONE

Multiple cross-site scripting (XSS) vulnerabilities in Falt4Extreme RC4 10.9.2007 allow remote attackers to inject arbitrary web script or HTML via the handler parameter to (1) index.php and possibly

Multiple cross-site scripting (XSS) vulnerabilities in Falt4Extreme RC4 10.9.2007 allow remote attackers to inject arbitrary web script or HTML via the handler parameter to (1) index.php and possibly ...

12/11/2007CWE-79