Every CVE whose affected-product data names Elxis Elxis Cms, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (5)
CVE-2007-3250 — CVSS 7.5 (high): SQL injection vulnerability in mod_banners.php in Elxis CMS before 2006.4 20070613 allows remote attackers to execute arbitrary SQL…
CVE-2008-4649 — CVSS 7.5 (high): Session fixation vulnerability in Elxis CMS 2008.1 revision 2204 allows remote attackers to hijack web sessions by setting the PHPSESSID…
CVE-2009-4154 — CVSS 5.0 (medium): Directory traversal vulnerability in includes/feedcreator.class.php in Elxis CMS allows remote attackers to read arbitrary files via a…
CVE-2008-4648 — CVSS 4.3 (medium): Cross-site scripting (XSS) vulnerability in index.php in Elxis CMS 2008.1 revision 2204 allows remote attackers to inject arbitrary web…
CVE-2011-4918 — CVSS 4.3 (medium): Multiple cross-site scripting (XSS) vulnerabilities in Elxis CMS 2009.2, 2009.3 and 2009.3 Aphrodite before revision 2684 allow remote…