Vulnerabilities > CMS TUT SU

DATE	CVE	VULNERABILITY TITLE	RISK
2009-07-05	CVE-2009-2333	Path Traversal vulnerability in Cms.Tut.Su CMS Chainuk Multiple directory traversal vulnerabilities in CMS Chainuk 1.2 and earlier allow remote attackers to include and execute arbitrary local files via a .. network low complexity cms-tut-su CWE-22	7.5
2009-07-05	CVE-2009-2332	Information Exposure vulnerability in Cms.Tut.Su CMS Chainuk CMS Chainuk 1.2 and earlier allows remote attackers to obtain sensitive information via (1) a crafted id parameter to index.php or (2) a nonexistent folder name in the id parameter to admin/admin_delete.php, which reveals the installation path in an error message. network low complexity cms-tut-su CWE-200	5.0
2009-07-05	CVE-2009-2331	Code Injection vulnerability in Cms.Tut.Su CMS Chainuk Multiple static code injection vulnerabilities in CMS Chainuk 1.2 and earlier allow remote attackers to inject arbitrary PHP code (1) into settings.php via the menu parameter to admin_settings.php or (2) into a content/=NUMBER.php file via the title parameter to admin_new.php. network low complexity cms-tut-su CWE-94	7.5
2009-07-05	CVE-2009-2330	Cross-Site Scripting vulnerability in Cms.Tut.Su CMS Chainuk Cross-site scripting (XSS) vulnerability in admin/admin_menu.php in CMS Chainuk 1.2 and earlier allows remote attackers to inject arbitrary web script or HTML via the menu parameter. network cms-tut-su CWE-79	4.3

Vulnerabilities > CMS TUT SU {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"CMS TUT SU"}]}