Vulnerabilities > Phpcms > Phpcms > 1.1.9
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2005-01-10 | CVE-2004-1203 | Information Disclosure vulnerability in PHPcms 1.1.9/1.2.0/1.2.1 parser.php in phpCMS 1.2.1 and earlier, with non-stealth and debug modes enabled, allows remote attackers to gain sensitive information via an invalid file parameter, which reveals the web server's installation path. | 5.0 |
2005-01-10 | CVE-2004-1202 | Cross-Site Scripting vulnerability in PHPcms 1.1.9/1.2/1.2.1 Cross-site scripting (XSS) vulnerability in parser.php in phpCMS 1.2.1 and earlier, with non-stealth and debug modes enabled, allows remote attackers to inject arbitrary web script or HTML via the file parameter. network phpcms | 6.8 |