VYPR
Vendor

Genixcms

Products
1
CVEs
34
Across products
34
Status
Private

Products

1

Recent CVEs

34
View all 34 CVEs →
  • CVE-2015-3933CriNov 8, 2017
    risk 0.67cvss 9.8epss 0.04

    Multiple SQL injection vulnerabilities in inc/lib/User.class.php in MetalGenix GeniXCMS before 0.0.3-patch allow remote attackers to execute arbitrary SQL commands via the (1) email parameter or (2) userid parameter to register.php.

  • CVE-2017-5959CriFeb 21, 2017
    risk 0.64cvss 9.8epss 0.01

    CSRF token bypass in GeniXCMS before 1.0.2 could result in escalation of privileges. The forgotpassword.php page can be used to acquire a token.

  • CVE-2017-5575CriJan 23, 2017
    risk 0.64cvss 9.8epss 0.03

    SQL injection vulnerability in inc/lib/Options.class.php in GeniXCMS before 1.0.0 allows remote attackers to execute arbitrary SQL commands via the modules parameter.

  • CVE-2017-5574CriJan 23, 2017
    risk 0.64cvss 9.8epss 0.02

    SQL injection vulnerability in register.php in GeniXCMS before 1.0.0 allows unauthenticated users to execute arbitrary SQL commands via the activation parameter.

  • CVE-2017-5519CriJan 17, 2017
    risk 0.64cvss 9.8epss 0.02

    SQL injection vulnerability in Posts.class.php in GeniXCMS through 0.0.8 allows remote attackers to execute arbitrary SQL commands via the id parameter.

  • CVE-2017-5517CriJan 17, 2017
    risk 0.64cvss 9.8epss 0.02

    SQL injection vulnerability in author.control.php in GeniXCMS through 0.0.8 allows remote attackers to execute arbitrary SQL commands via the type parameter.

  • CVE-2017-14764HigSep 27, 2017
    risk 0.57cvss 8.8epss 0.02

    In the Upload Modules page in GeniXCMS 1.1.4, remote authenticated users can execute arbitrary PHP code via a .php file in a ZIP archive of a module.

  • CVE-2017-14763HigSep 27, 2017
    risk 0.57cvss 8.8epss 0.01

    In the Install Themes page in GeniXCMS 1.1.4, remote authenticated users can execute arbitrary PHP code via a .php file in a ZIP archive of a theme.

  • CVE-2017-6065HigFeb 17, 2017
    risk 0.57cvss 8.8epss 0.01

    SQL injection vulnerability in inc/lib/Control/Backend/menus.control.php in GeniXCMS through 1.0.2 allows remote authenticated users to execute arbitrary SQL commands via the order parameter.

  • CVE-2017-5520HigJan 17, 2017
    risk 0.57cvss 8.8epss 0.02

    The media rename feature in GeniXCMS through 0.0.8 does not consider alternative PHP file extensions when checking uploaded files for PHP content, which enables a user to rename and execute files with the `.php6`, `.php7` and `.phtml` extensions.

  • CVE-2017-5345HigJan 12, 2017
    risk 0.57cvss 8.8epss 0.02

    SQL injection vulnerability in inc/lib/Control/Ajax/tags-ajax.control.php in GeniXCMS 0.0.8 allows remote authenticated editors to execute arbitrary SQL commands via the term parameter to the default URI.

  • CVE-2017-8827CriMay 8, 2017
    risk 0.52cvss 9.1epss 0.02

    forgotpassword.php in GeniXCMS 1.0.2 lacks a rate limit, which might allow remote attackers to cause a denial of service (login inability) or possibly conduct Arbitrary User Password Reset attacks via a series of requests.

  • CVE-2017-8377HigMay 1, 2017
    risk 0.50cvss 8.8epss 0.01

    GeniXCMS 1.0.2 has SQL Injection in inc/lib/Control/Backend/menus.control.php via the menuid parameter.

  • CVE-2017-5518HigJan 17, 2017
    risk 0.48cvss 7.4epss 0.02

    The media-file upload feature in GeniXCMS through 0.0.8 allows remote attackers to conduct SSRF attacks via a URL, as demonstrated by a URL with an intranet IP address.

  • CVE-2017-5347HigJan 12, 2017
    risk 0.47cvss 7.2epss 0.01

    SQL injection vulnerability in inc/mod/newsletter/options.php in GeniXCMS 0.0.8 allows remote authenticated administrators to execute arbitrary SQL commands via the recipient parameter to gxadmin/index.php.

  • CVE-2016-10096HigJan 1, 2017
    risk 0.41cvss 7.3epss 0.01

    SQL injection vulnerability in register.php in GeniXCMS before 1.0.0 allows remote attackers to execute arbitrary SQL commands via the activation parameter.

  • CVE-2017-17431MedDec 5, 2017
    risk 0.40cvss 6.1epss 0.01

    GeniXCMS 1.1.5 has XSS via the from, id, lang, menuid, mod, q, status, term, to, or token parameter. NOTE: this might overlap CVE-2017-14761, CVE-2017-14762, or CVE-2017-14765.

  • CVE-2017-14765MedSep 27, 2017
    risk 0.40cvss 6.1epss 0.01

    In GeniXCMS 1.1.4, gxadmin/index.php has XSS via the Menu ID field in a page=menus request.

  • CVE-2017-14762MedSep 27, 2017
    risk 0.40cvss 6.1epss 0.01

    In GeniXCMS 1.1.4, /inc/lib/Control/Backend/menus.control.php has XSS via the id parameter.

  • CVE-2017-14761MedSep 27, 2017
    risk 0.40cvss 6.1epss 0.01

    In GeniXCMS 1.1.4, /inc/lib/backend/menus.control.php has XSS via the id parameter.