Zanfi Solutions Zanfi Cms Lite vulnerabilities
3 known vulnerabilities affecting zanfi_solutions/zanfi_cms_lite.
Total CVEs
3
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
MEDIUM3
Vulnerabilities
Page 1 of 1
CVE-2008-4158P3MEDIUMCVSS 6.8PoCv1.22008-09-22
CVE-2008-4158 [MEDIUM] CWE-22 CVE-2008-4158: Multiple directory traversal vulnerabilities in index.php in Zanfi CMS lite 1.2 allow remote attacke
Multiple directory traversal vulnerabilities in index.php in Zanfi CMS lite 1.2 allow remote attackers to include and execute arbitrary local files via a .. (dot dot) in the (1) flag and (2) inc parameters.
nvd
CVE-2004-2195P4MEDIUMCVSS 5.0v1.12004-12-31
CVE-2004-2195 [MEDIUM] CVE-2004-2195: PHP remote file inclusion vulnerability in index.php in Zanfi CMS lite 1.1 allows remote attackers t
PHP remote file inclusion vulnerability in index.php in Zanfi CMS lite 1.1 allows remote attackers to execute arbitrary PHP code via the inc parameter.
nvd
CVE-2004-2196P4MEDIUMCVSS 5.0v1.12004-12-31
CVE-2004-2196 [MEDIUM] CVE-2004-2196: Zanfi CMS lite 1.1 allows remote attackers to obtain the full path of the web server via direct requ
Zanfi CMS lite 1.1 allows remote attackers to obtain the full path of the web server via direct requests without required arguments to (1) adm_pages.php, (2) corr_pages.php, (3) del_block.php, (4) del_page.php, (5) footer.php, (6) home.php, and others.
nvd