Ixprim Cms vulnerabilities
3 known vulnerabilities affecting ixprim/ixprim_cms.
Total CVEs
3
CISA KEV
0
Public exploits
2
Exploited in wild
0
Severity breakdown
MEDIUM3
Vulnerabilities
Page 1 of 1
CVE-2006-6756P4MEDIUMCVSS 5.1PoCv1.22006-12-27
CVE-2006-6756 [MEDIUM] CVE-2006-6756: The code function in install.fct.php in Ixprim 1.2 produces a guessable value of the confidential IX
The code function in install.fct.php in Ixprim 1.2 produces a guessable value of the confidential IXP_CODE in mainfile.php, which might allow remote attackers to gain access to the administration panel via a brute force attack.
nvd
CVE-2006-6754P4MEDIUMCVSS 6.5v1.22006-12-27
CVE-2006-6754 [MEDIUM] CVE-2006-6754: Multiple SQL injection vulnerabilities in Ixprim 1.2 allow remote attackers to execute arbitrary SQL
Multiple SQL injection vulnerabilities in Ixprim 1.2 allow remote attackers to execute arbitrary SQL commands via the story_id parameter to ixm_ixpnews.php, and unspecified other vectors.
nvd
CVE-2006-6755P4MEDIUMCVSS 5.0PoCv1.22006-12-27
CVE-2006-6755 [MEDIUM] CVE-2006-6755: Ixprim 1.2 allows remote attackers to obtain sensitive information via a direct request for kernel/p
Ixprim 1.2 allows remote attackers to obtain sensitive information via a direct request for kernel/plugins/fckeditor2/ixprim_api.php, which reveals the path in an error message.
nvd