Known Vulnerabilities for products from Jetbox
Listed below are 20 of the newest known vulnerabilities associated with the vendor "Jetbox".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2008-6174 | Cross-site scripting (XSS) vulnerability in admin/postlister/index.php in Jetbox CMS 2.1 allows remote attackers to inject ar... | 4.3 - MEDIUM | 2009-02-19 | 2017-08-17 |
| CVE-2008-4651 | Multiple SQL injection vulnerabilities in Jetbox CMS 2.1 allow remote authenticated users to execute arbitrary SQL commands v... | 6 - MEDIUM | 2008-10-22 | 2017-08-08 |
| CVE-2007-2733 | Unrestricted file upload vulnerability in Jetbox CMS allows remote authenticated users with author privileges to upload arbit... | 6 - MEDIUM | 2007-05-16 | 2018-10-16 |
| CVE-2007-2732 | Multiple cross-site scripting (XSS) vulnerabilities in Jetbox CMS allow remote attackers to inject arbitrary web script or HT... | 6.8 - MEDIUM | 2007-05-16 | 2018-10-16 |
| CVE-2007-2731 | CRLF injection vulnerability in formmail.php in Jetbox CMS 2.1 might allow remote attackers to inject arbitrary e-mail header... | 4 - MEDIUM | 2007-05-16 | 2018-10-16 |
| CVE-2007-2686 | Cross-site scripting (XSS) vulnerability in index.php in Jetbox CMS 2.1 allows remote attackers to inject arbitrary web scrip... | 4.3 - MEDIUM | 2007-05-22 | 2018-10-16 |
| CVE-2007-2685 | Multiple SQL injection vulnerabilities in index.php in Jetbox CMS 2.1 allow remote attackers to execute arbitrary SQL command... | 7.5 - HIGH | 2007-05-21 | 2018-10-16 |
| CVE-2007-2684 | Jetbox CMS 2.1 allows remote attackers to obtain sensitive information via (1) a direct request to (a) main_page.php, (b) ope... | 5 - MEDIUM | 2007-05-21 | 2018-10-16 |
| CVE-2007-1898 | formmail.php in Jetbox CMS 2.1 allows remote attackers to send arbitrary e-mails (spam) via modified recipient, _SETTINGS[all... | 5.8 - MEDIUM | 2007-05-16 | 2018-10-16 |
| CVE-2006-4740 | Jetbox CMS allows remote attackers to obtain sensitive information via a direct request for certain files, which reveal the p... | 5 - MEDIUM | 2006-09-13 | 2018-10-17 |
| CVE-2006-4739 | Multiple cross-site scripting (XSS) vulnerabilities in Jetbox CMS allow remote attackers to inject arbitrary web script or HT... | 2.6 - LOW | 2006-09-13 | 2018-10-17 |
| CVE-2006-4738 | PHP remote file inclusion vulnerability in phpthumb.php in Jetbox CMS allows remote attackers to execute arbitrary PHP code v... | 7.5 - HIGH | 2006-09-13 | 2018-10-17 |
| CVE-2006-4737 | SQL injection vulnerability in index.php in Jetbox CMS allows remote attackers to inject arbitrary web script or HTML via the... | 7.5 - HIGH | 2006-09-13 | 2018-10-17 |
| CVE-2006-4422 | ** DISPUTED ** PHP remote file inclusion vulnerability in includes/phpdig/libs/search_function.php in Jetbox CMS 2.1 allows ... | 7.5 - HIGH | 2006-08-29 | 2023-11-07 |
| CVE-2006-3586 | SQL injection vulnerability in Jetbox CMS 2.1 SR1 allows remote attackers to execute arbitrary SQL commands via the (1) front... | 7.5 - HIGH | 2006-08-08 | 2018-10-18 |
| CVE-2006-3585 | Multiple cross-site scripting (XSS) vulnerabilities in Jetbox CMS 2.1 SR1 allow remote attackers to inject arbitrary web scri... | 4.3 - MEDIUM | 2006-08-08 | 2018-10-18 |
| CVE-2006-3584 | Dynamic variable evaluation vulnerability in index.php in Jetbox CMS 2.1 SR1 allows remote attackers to overwrite configurati... | 7.5 - HIGH | 2006-08-08 | 2018-10-18 |
| CVE-2006-3583 | Session fixation vulnerability in Jetbox CMS 2.1 SR1 allows remote attackers to hijack web sessions via a crafted link and th... | 7.5 - HIGH | 2006-08-08 | 2018-10-18 |
| CVE-2006-2270 | PHP remote file inclusion vulnerability in includes/config.php in Jetbox CMS 2.1 allows remote attackers to execute arbitrary... | 7.5 - HIGH | 2006-05-09 | 2018-10-18 |
| CVE-2004-1448 | Jetbox One 2.0.8 and possibly other versions allow remote attackers with Author privileges in the IMAGES module to upload PHP... | 4.6 - MEDIUM | 2004-12-31 | 2017-07-11 |