Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo

CMS

e107

e107 is a free and open-source content management system (CMS) that allows you to manage and publish your content online with ease.

Official Site:

https://e107.org/

Severity Summary:

Critical: 1 High: 17 Medium: 49 Low: 1
Reference
Title
Severity
CVE-2005-2327
e107 Other Vulnerability
Medium
CVE-2004-2262
e107 Other Vulnerability
Medium
CVE-2004-2028
e107 Other Vulnerability
Medium
CVE-2004-2031
e107 Other Vulnerability
Medium
CVE-2003-1191
e107 Other Vulnerability
Medium
CVE-2023-36121
e107 Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2004-2040
e107 Other Vulnerability
Medium
CVE-2007-3429
e107 Other Vulnerability
Medium
CVE-2009-1409
e107 Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability
Medium
CVE-2008-2020
e107 Permissions Privileges and Access Controls Vulnerability
Medium
CVE-2011-4946
e107 Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability
Medium
CVE-2018-17081
e107 Cross-Site Request Forgery (CSRF) Vulnerability
Medium
CVE-2018-16389
e107 Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability
Medium
CVE-2018-16381
e107 Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2018-11127
e107 Cross-Site Request Forgery (CSRF) Vulnerability
Medium
CVE-2017-8098
e107 Cross-Site Request Forgery (CSRF) Vulnerability
Medium
CVE-2015-1057
e107 Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2015-1041
e107 Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2013-7305
e107 Credentials Management Errors Vulnerability
Medium
CVE-2013-2750
e107 Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2012-6434
e107 Cross-Site Request Forgery (CSRF) Vulnerability
Medium
CVE-2012-6433
e107 Cross-Site Request Forgery (CSRF) Vulnerability
Medium
CVE-2011-4947
e107 Cross-Site Request Forgery (CSRF) Vulnerability
Medium
CVE-2012-3843
e107 Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2008-5320
e107 Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability
Medium
CVE-2010-5084
e107 Cross-Site Request Forgery (CSRF) Vulnerability
Medium
CVE-2011-4921
e107 Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability
Medium
CVE-2011-4920
e107 Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2011-3731
e107 Exposure of Sensitive Information to an Unauthorized Actor Vulnerability
Medium
CVE-2011-0457
e107 Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium