Phpcityportal vulnerabilities
2 known vulnerabilities affecting phpcityportal/phpcityportal.
Total CVEs
2
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
CRITICAL1MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2017-15970P3CRITICALCVSS 9.8PoCv2.02017-10-29
CVE-2017-15970 [CRITICAL] CWE-89 CVE-2017-15970: PHP CityPortal 2.0 allows SQL Injection via the nid parameter to index.php in a page=news action, or
PHP CityPortal 2.0 allows SQL Injection via the nid parameter to index.php in a page=news action, or the cat parameter.
nvd
CVE-2010-2318P4MEDIUMCVSS 4.3v1.32010-06-17
CVE-2010-2318 [MEDIUM] CWE-79 CVE-2010-2318: Cross-site scripting (XSS) vulnerability in cms_data.php in PHPCityPortal 1.3 allows remote attacker
Cross-site scripting (XSS) vulnerability in cms_data.php in PHPCityPortal 1.3 allows remote attackers to inject arbitrary web script or HTML via the page parameter.
nvd