Leinir Travelsized Cms vulnerabilities
2 known vulnerabilities affecting leinir/travelsized_cms.
Total CVEs
2
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
HIGH1MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2008-1324P3HIGHCVSS 7.5PoCv0.4.12008-03-13
CVE-2008-1324 [HIGH] CWE-22 CVE-2008-1324: Multiple directory traversal vulnerabilities in index.php in Travelsized CMS 0.4.1 allow remote atta
Multiple directory traversal vulnerabilities in index.php in Travelsized CMS 0.4.1 allow remote attackers to include and execute arbitrary local files via a .. (dot dot) in the (1) page_id and (2) language parameters. NOTE: this might be the same issue as CVE-2008-1325.
nvd
CVE-2006-6037P4MEDIUMCVSS 6.8≤ 0.4.12006-11-22
CVE-2006-6037 [MEDIUM] CWE-79 CVE-2006-6037: Multiple cross-site scripting (XSS) vulnerabilities in index.php in Dan Jensen Travelsized CMS 0.4.1
Multiple cross-site scripting (XSS) vulnerabilities in index.php in Dan Jensen Travelsized CMS 0.4.1 and earlier allow remote attackers to inject arbitrary web script or HTML via (1) page, (2) page_id, or (3) language parameter.
nvd