cbcvebase.

Jgs-Xa Jgs-Portal vulnerabilities

4 known vulnerabilities affecting jgs-xa/jgs-portal.

Total CVEs
4
CISA KEV
0
Public exploits
2
Exploited in wild
0
Severity breakdown
HIGH2MEDIUM2

Vulnerabilities

Page 1 of 1
CVE-2005-1633P3HIGHCVSS 7.5PoC≤ 3.0.22005-05-17
CVE-2005-1633 [HIGH] CVE-2005-1633: Multiple SQL injection vulnerabilities in JGS-XA JGS-Portal 3.0.2 and earlier allow remote attackers Multiple SQL injection vulnerabilities in JGS-XA JGS-Portal 3.0.2 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) anzahl_beitraege parameter to jgs_portal.php, 2) year parameter to (jgs_portal_statistik.php, 3) year parameter to (jgs_portal_beitraggraf.php, 4) tag parameter to (jgs_portal_viewsgraf.php, 5) year parameter to (jgs
nvd
CVE-2005-1479P3HIGHCVSS 7.5PoC≤ 3.0.12005-05-11
CVE-2005-1479 [HIGH] CVE-2005-1479: SQL injection vulnerability in jgs_portal.php in JGS-Portal 3.0.1 and earlier allows remote attacker SQL injection vulnerability in jgs_portal.php in JGS-Portal 3.0.1 and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter.
nvd
CVE-2005-1635P4MEDIUMCVSS 5.0≤ 3.0.22005-05-17
CVE-2005-1635 [MEDIUM] CVE-2005-1635: JGS-XA JGS-Portal 3.0.2 and earlier allows remote attackers to obtain the full server path via direc JGS-XA JGS-Portal 3.0.2 and earlier allows remote attackers to obtain the full server path via direct requests to (1) jgs_portal_ref.php, (2) jgs_portal_land.php, (3) jgs_portal_log.php, (4) jgs_portal_global_sponsor.php, (5) jgs_portal_global.php, (6) jgs_portal_system.php, (7) jgs_portal_views.php; or multiple files in the jgs_portal_include directory, incl
nvd
CVE-2005-1634P4MEDIUMCVSS 4.3≤ 3.0.22005-05-17
CVE-2005-1634 [MEDIUM] CVE-2005-1634: Multiple cross-site scripting (XSS) vulnerabilities in JGS-XA JGS-Portal 3.0.2 and earlier allow rem Multiple cross-site scripting (XSS) vulnerabilities in JGS-XA JGS-Portal 3.0.2 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) anzahl_beitraege parameter to jgs_portal.php, (2) year parameter to jgs_portal_statistik.php, (3) year parameter to jgs_portal_beitraggraf.php, (4) tag parameter to jgs_portal_viewsgraf.php, (5) y
nvd
Jgs-Xa Jgs-Portal vulnerabilities | cvebase