VYPR
← All vendors
Vendor

ELSEIF

Products
3
CVEs
4
Across products
4
Status
Private

Products

3

Recent CVEs

4
  • CVE-2007-5305Oct 9, 2007
    ELSEIF
    CMS
    risk 0.04cvss epss 0.09

    Multiple PHP remote file inclusion vulnerabilities in ELSEIF CMS Beta 0.6 allow remote attackers to execute arbitrary PHP code via a URL in the (1) contenus parameter to (a) contenus.php; the (2) tpelseifportalrepertoire parameter to (b) votes.php, (c) espaceperso.php, (d)…

  • CVE-2007-5304Oct 9, 2007
    ELSEIF
    ELSEIF CMS
    risk 0.03cvss epss 0.04

    Multiple cross-site scripting (XSS) vulnerabilities in ELSEIF CMS Beta 0.6 allow remote attackers to inject arbitrary web script or HTML via the (1) repertimage parameter to utilisateurs/vousetesbannis.php, the (2) elseifvotetxtresultatduvote parameter to…

  • CVE-2007-5307Oct 9, 2007
    ELSEIF
    ELSEIF CMS
    risk 0.03cvss epss 0.02

    ELSEIF CMS Beta 0.6 does not properly unset variables when the input data includes a numeric parameter with a value matching an alphanumeric parameter's hash value, which allows remote attackers to execute arbitrary PHP code by uploading a .php file via…

  • CVE-2007-5306Oct 9, 2007
    ELSEIF
    ELSEIF CMS
    risk 0.03cvss epss 0.03

    ELSEIF CMS Beta 0.6 allows remote attackers to obtain sensitive information (full path) via unspecified vectors to utilisateurs/votesresultats.php.