Vulnerabilities > Jcow

DATE	CVE	VULNERABILITY TITLE	RISK
2020-01-14	CVE-2011-3202	Cross-site Scripting vulnerability in Jcow CMS 4.2 A Cross-Site Scripting (XSS) vulnerability exists in the g parameter to index.php in Jcow CMS 4.2 and earlier. network jcow CWE-79	4.3
2020-01-14	CVE-2011-3203	Improper Input Validation vulnerability in Jcow CMS 4.2/5.2 A Code Execution vulnerability exists the attachment parameter to index.php in Jcow CMS 4.x to 4.2 and 5.2 to 5.2. network low complexity jcow CWE-20	7.5
2011-09-23	CVE-2011-3746	Information Exposure vulnerability in Jcow 4.2.1 Jcow 4.2.1 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by themes/default/page.tpl.php and certain other files. network low complexity jcow CWE-200	5.0

Vulnerabilities > Jcow {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Jcow"}]}