Vulnerabilities > Ixprim
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2006-12-27 | CVE-2006-6756 | Remote Security vulnerability in Ixprim CMS 1.2 The code function in install.fct.php in Ixprim 1.2 produces a guessable value of the confidential IXP_CODE in mainfile.php, which might allow remote attackers to gain access to the administration panel via a brute force attack. | 5.1 |
2006-12-27 | CVE-2006-6755 | Information Disclosure vulnerability in Ixprim CMS 1.2 Ixprim 1.2 allows remote attackers to obtain sensitive information via a direct request for kernel/plugins/fckeditor2/ixprim_api.php, which reveals the path in an error message. | 5.0 |
2006-12-27 | CVE-2006-6754 | SQL Injection vulnerability in Ixprim CMS 1.2 Multiple SQL injection vulnerabilities in Ixprim 1.2 allow remote attackers to execute arbitrary SQL commands via the story_id parameter to ixm_ixpnews.php, and unspecified other vectors. | 6.5 |