Salims Softhouse Jaf Cms — known CVE vulnerabilities
Every CVE whose affected-product data names Salims Softhouse Jaf Cms, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (9)
CVE-2006-7128 — CVSS 7.5 (high): PHP remote file inclusion vulnerability in forum/forum.php JAF CMS 4.0 RC1 allows remote attackers to execute arbitrary PHP code via a URL…
CVE-2004-1505 — CVSS 7.5 (high): Directory traversal vulnerability in index.php in Just Another Flat file (JAF) CMS 3.0RC allows remote attackers to read arbitrary files…
CVE-2006-5131 — CVSS 7.5 (high): module/shout/jafshout.php (aka the shoutbox) in ph03y3nk just another flat file (JAF) CMS 4.0 RC1 allows remote attackers to execute…
CVE-2006-7127 — CVSS 6.8 (medium): Multiple PHP remote file inclusion vulnerabilities in JAF CMS 4.0 and 4.0 RC2 allow remote attackers to execute arbitrary PHP code via a…
CVE-2006-5129 — CVSS 6.8 (medium): Multiple cross-site scripting (XSS) vulnerabilities in ph03y3nk just another flat file (JAF) CMS 4.0 RC1 allow remote attackers to inject…
CVE-2006-5130 — CVSS 6.8 (medium): Multiple cross-site scripting (XSS) vulnerabilities in ph03y3nk just another flat file (JAF) CMS 4.0 RC1 allow remote attackers to inject…
CVE-2004-1504 — CVSS 5.0 (medium): The displaycontent function in config.php for Just Another Flat file (JAF) CMS 3.0RC allows remote attackers to gain sensitive information…
CVE-2005-2053 — CVSS 5.0 (medium): Just another flat file (JAF) CMS before 3.0 Final allows remote attackers to obtain sensitive information via (1) an * (asterisk) in the id…
CVE-2007-6142 — CVSS 4.3 (medium): Multiple cross-site scripting (XSS) vulnerabilities in ph03y3nk just another flat file (JAF) CMS 4.0 RC2 allow remote attackers to inject…