Tgs-Cms Tgs Content Management vulnerabilities
3 known vulnerabilities affecting tgs-cms/tgs_content_management.
Total CVEs
3
CISA KEV
0
Public exploits
3
Exploited in wild
0
Severity breakdown
HIGH1MEDIUM2
Vulnerabilities
Page 1 of 1
CVE-2009-2929P3HIGHCVSS 7.5PoCv0.1.6v0.1.7+4 more2009-08-21
CVE-2009-2929 [HIGH] CWE-89 CVE-2009-2929: Multiple SQL injection vulnerabilities in TGS Content Management 0.x allow remote attackers to execu
Multiple SQL injection vulnerabilities in TGS Content Management 0.x allow remote attackers to execute arbitrary SQL commands via the (1) tgs_language_id, (2) tpl_dir, (3) referer, (4) user-agent, (5) site, (6) option, (7) db_optimization, (8) owner, (9) admin_email, (10) default_language, and (11) db_host parameters to cms/index.php; and the (12) cmd, (
nvd
CVE-2008-6839P4MEDIUMCVSS 4.3PoCv0.3.22009-06-27
CVE-2008-6839 [MEDIUM] CWE-79 CVE-2008-6839: Multiple cross-site scripting (XSS) vulnerabilities in TGS Content Management 0.3.2r2 allow remote a
Multiple cross-site scripting (XSS) vulnerabilities in TGS Content Management 0.3.2r2 allow remote attackers to inject arbitrary web script or HTML via the (1) msg and (2) goodmsg parameters to (a) login.php and (b) index.php, and the (3) dir and (4) id parameters to index.php. NOTE: the provenance of this information is unknown; the details are obtain
nvd
CVE-2009-2928P4MEDIUMCVSS 4.3PoCv0.1.6v0.1.7+4 more2009-08-21
CVE-2009-2928 [MEDIUM] CVE-2009-2928: Cross-site scripting (XSS) vulnerability in login.php in TGS Content Management 0.x allows remote at
Cross-site scripting (XSS) vulnerability in login.php in TGS Content Management 0.x allows remote attackers to inject arbitrary web script or HTML via the previous_page parameter, a different vector than CVE-2008-6839.
nvd