CVE-2002-1085 — CVSS 7.5 (high): Multiple cross-site scripting vulnerabilities in ezContents 1.41 and earlier allow remote attackers to execute script and steal cookies via…
CVE-2002-1086 — CVSS 7.5 (high): Multiple SQL injection vulnerabilities in ezContents 1.41 and earlier allow remote attackers to conduct unauthorized activities.
CVE-2006-4478 — CVSS 7.5 (high): SQL injection vulnerability in headeruserdata.php in Visual Shapers ezContents 2.0.3 allows remote attackers to execute arbitrary SQL…
CVE-2003-1214 — CVSS 7.5 (high): Unknown vulnerability in the server login for VisualShapers ezContents 2.02 and earlier allows remote attackers to bypass access…
CVE-2004-0070 — CVSS 7.5 (high): PHP remote file inclusion vulnerability in module.php for ezContents allows remote attackers to execute arbitrary PHP code by modifying the…
CVE-2002-1084 — CVSS 6.4 (medium): The VerifyLogin function in ezContents 1.41 and earlier does not properly halt program execution if a user fails to log in properly, which…
CVE-2008-7055 — CVSS 5.1 (medium): module.php in ezContents 2.0.3 allows remote attackers to bypass the directory traversal protection mechanism to include and execute…
CVE-2008-7054 — CVSS 5.1 (medium): Multiple directory traversal vulnerabilities in ezContents 2.0.3 allow remote attackers to include and execute arbitrary local files via…
CVE-2002-1083 — CVSS 5.0 (medium): Directory traversal vulnerabilities in ezContents 1.41 and earlier allow remote attackers to cause ezContents to (1) create directories…
CVE-2002-1082 — CVSS 5.0 (medium): The Image Upload capability for ezContents 1.40 and earlier allows remote attackers to cause ezContents to perform operations on local…
CVE-2002-1087 — CVSS 5.0 (medium): The scripts (1) createdir.php, (2) removedir.php and (3) uploadfile.php for ezContents 1.41 and earlier do not check credentials, which…
CVE-2006-4479 — CVSS 4.3 (medium): Cross-site scripting (XSS) vulnerability in loginreq2.php in Visual Shapers ezContents 2.0.3 allows remote attackers to inject arbitrary…