Netrix : Security Vulnerabilities, CVEs, CVSS score >= 3
admin/cikkform.php in Netrix CMS 1.0 allows remote attackers to modify arbitrary pages via a direct request using the cid parameter.
Max CVSS
5.0
EPSS Score
0.96%
Published
2010-05-26
Updated
2017-09-19
Cross-site scripting (XSS) vulnerability in Netrix X-Site Manager allows remote attackers to inject arbitrary web script or HTML via the product_id parameter, as originally demonstrated for a custom mp3players_details.php program. NOTE: the name of the affected program might be installation-dependent, but it has been identified as "product_details.php" by some sources.
Max CVSS
4.3
EPSS Score
0.59%
Published
2006-01-23
Updated
2017-07-20
2 vulnerabilities found