Shodan
Vulnerabilities
Vulnerable Software
Benjacms:  >> Benja Cms  >> 0.1  Security Vulnerabilities
CVE-2008-2987
Multiple cross-site scripting (XSS) vulnerabilities in Benja CMS 0.1 allow remote attackers to inject arbitrary web script or HTML via the PATH_INFO to (1) admin_edit_submenu.php, (2) admin_new_submenu.php, and (3) admin_edit_topmenu.php in admin/.
CVSS Score
4.3
EPSS Score
0.004
Published
2008-07-02
CVE-2008-2988
Unrestricted file upload vulnerability in admin/upload.php in Benja CMS 0.1 allows remote attackers to upload and execute arbitrary PHP files via unspecified vectors, followed by a direct request to the file in billeder/.
CVSS Score
7.5
EPSS Score
0.007
Published
2008-07-02
CVE-2008-2879
Benja CMS 0.1 does not require authentication for access to admin/, which allows remote attackers to add or delete a menu.
CVSS Score
6.4
EPSS Score
0.006
Published
2008-06-26


Products
Pricing
Contact Us

Shodan ® - All rights reserved