Pluck CMS version 4.5.2 suffers from multiple local file inclusion vulnerabilities.
beddc1ce8725dcaee0c7917067ae3d99d8b0c7b92f3b44b3204fb87ff15b22ec
Jaow CMS version 2.3 suffers from a cross site request forgery vulnerability.
c657173514edace566f414ca34f718968863e18646b9923687c4ad2e09b82608
7sepehr CMS 2012 suffers from multiple remote SQL injection vulnerabilities.
8b944c293364bab5c44b869b26c29e372b8632422c3669b0f66b89d48de78d89
CakePHP and Squiz CMS suffer from XXE injection vulnerabilities.
961339f6ca18d70df5c08cf52ba52dcf3e959a21197fa995450430621e4c7f3f
This is a blind SQL injection exploit written in AutoIt3 that takes advantage of MagyCMS version 2.0.1121 BETA.
7bb2ad445113e3b10884ac186a263b5ff015ba59fe813ee16a5c886a16e1e7ef
Arasism (IR) CMS suffers from a remote shell upload vulnerability.
c7df3b543650230be10109cf9ed2f937f260e33d288ca3394342ee8650b5fb28
Sananet CMS suffers from a remote SQL injection vulnerability. Note that this finding houses site-specific data.
376e8258e28e1cca47b9ee6246bca97d1a0f4d4a2c9bedfdf4a87a002da7b226
YourOnlineAgents CMS suffers from a cross site scripting vulnerability. Note that this finding houses site-specific data.
08c47bd484b067291df87dd30298341a33104a747b55afc101b3888cdada0f17
Inoutmail Webmail CMS 2012 suffers from a cross site scripting vulnerability.
d8b9e67d54c9d90d74f9052a85dac0ea25191ec820d9607b7be90a978e3b1ab3
PolarisCMS suffers from a cross site scripting issue when input passed to the function 'WebForm_OnSubmit()' via the URL to blog.aspx is not properly sanitized before being returned to the user.
0aa6444ecc73043ef5429138f03b93cf4e5521b6824da406cad980ccbdaae119
GetSimple CMS version 3.1.2 suffers from local file inclusion and path disclosure vulnerabilities.
31b1e57fbf7f937f77d9784291e1782b0f12b663027604cdcf7b49912b6578e3
Openconstructor CMS version 3.12.0 suffers from multiple remote SQL injection vulnerabilities.
26cadea862cc38352ba9cfbe0ce85d7f3ea87133ba22611ec4e5869d4cb65e20
Openconstructor CMS version 3.12.0 suffers from a stored cross site scripting vulnerability in data/hybrid/i_hybrid.php.
1d3af1a1271150ebcda8aa883d72304c2cacba4c37e14d10e91b2e04946376d2
Openconstructor CMS version 3.12.0 suffers from multiple stored cross site scripting vulnerabilities.
b50755807352657cfc3efc80fd3a7e67d0b89af5fd938e4cd1fd38874a54fdcd
Openconstructor CMS version 3.12.0 suffers from multiple reflective cross site scripting vulnerabilities.
6e1bf50fc4486b0a22d6269841e3060d3ee9aa76f2cb0f80e2074b440a730e82
Turtle CMS version 1 remote SQL injection exploit written in PHP.
49b6a64ed42b657c60b8d7f861c16bf1852e7cf83dd2ad6db777e7ca04f156a9
Elefant CMS version 1.2.0 suffers from a cross site scripting vulnerability.
7d633ca35dcdd51ec04d43ffc83bc31ba4e60aac4c2f13837b01cf53564b35cb
ocPortal CMS versions 7.1.5 and below are vulnerable to open URL redirection.
353cd4c439e094016caa438e0e165cbccde2fc29c1d867a80b2e7e755c9e4333
Jrobalian CMS suffers from a remote SQL injection vulnerability.
7505366a61059df42a26ed5ea3178d81c568eee5ce47317e69f6ce889b8d982c
Pligg CMS versions 0.9 BETA and 1.1.1 suffer from a remote command execution vulnerability.
72aab94afd362e20d942a993b2e306717c522e0cdd8ca6fb1b866dc08d964f0e
Shahumyanmedia CMS 2010 suffers from an authentication bypass vulnerability. Proof of concept code included.
6ac8ee86a9dc1a3b5060656cdad5bfd5ebf07f42f98648432dd21f90f0dd5023
Secunia Security Advisory - A security issue has been discovered in easyCMSlite, which can be exploited by malicious people to disclose sensitive information.
9028ed891af6586d5ea9f5a39483f56dea6a5a30316047fb5c54f5d6d6a2ebab
easyCMSlite version 1.0.9 suffers from a remote database information disclosure vulnerability.
d76b243f67795b89da6846818d5643c0c788edbdf1c583ff25b07a351804feaa
PBBoard CMS version 2.1.4 suffers from cross site request forgery and cross site scripting vulnerabilities.
3504eeef961d0a59f49c9ee08fb6ee83c790ce14364fa6fe2751a1e2eab9d1a9
Lepton CMS version 1.2.0 suffers from multiple cross site scripting vulnerabilities.
a1950761b16455f0831bfaca8919628053e40986ef93c4860bbb883b3dd0f353
Secunia Security Advisory - Sammy Forgit has discovered a vulnerability in Rama Zeiten CMS, which can be exploited by malicious people to disclose sensitive information.
e687f7ea655fa26185740c66307cb273ac58c8834bf8a0c9f7bf9e27b61608e9