Chupix Cms vulnerabilities
3 known vulnerabilities affecting chupix/chupix_cms.
Total CVEs
3
CISA KEV
0
Public exploits
3
Exploited in wild
0
Severity breakdown
HIGH1MEDIUM2
Vulnerabilities
Page 1 of 1
CVE-2007-4957P3HIGHCVSS 7.5PoCv0.2.32007-09-18
CVE-2007-4957 [HIGH] CWE-22 CVE-2007-4957: Multiple directory traversal vulnerabilities in download.php in Chupix CMS 0.2.3 allow remote attack
Multiple directory traversal vulnerabilities in download.php in Chupix CMS 0.2.3 allow remote attackers to read or overwrite arbitrary files via a .. (dot dot) in the (1) fichier or (2) repertoire parameter, or create arbitrary directories via a .. (dot dot) in the (3) repertoire parameter.
nvd
CVE-2007-5139P3MEDIUMCVSS 6.8PoCv0.2.32007-09-28
CVE-2007-5139 [MEDIUM] CWE-94 CVE-2007-5139: PHP remote file inclusion vulnerability in admin/include/header.php in chupix 0.2.3, when register_g
PHP remote file inclusion vulnerability in admin/include/header.php in chupix 0.2.3, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the repertoire parameter.
nvd
CVE-2008-3562P4MEDIUMCVSS 5.1PoCv0.2.32008-08-10
CVE-2008-3562 [MEDIUM] CWE-22 CVE-2008-3562: Directory traversal vulnerability in index.php in the Contact module in Chupix CMS 0.1.0, when magic
Directory traversal vulnerability in index.php in the Contact module in Chupix CMS 0.1.0, when magic_quotes_gpc is disabled, allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the mods parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
nvd