Known Vulnerabilities for products from Jetbox
Listed below are 20 of the newest known vulnerabilities associated with the vendor "Jetbox".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2008-6174 json | Cross-site scripting (XSS) vulnerability in admin/postlister/index.php in Jetbox CMS 2.1 allows remote attackers to inject ar... | Not Provided | 2009-02-19 | 2026-04-23 |
| CVE-2008-4651 json | Multiple SQL injection vulnerabilities in Jetbox CMS 2.1 allow remote authenticated users to execute arbitrary SQL commands v... | Not Provided | 2008-10-22 | 2026-04-23 |
| CVE-2007-2733 json | Unrestricted file upload vulnerability in Jetbox CMS allows remote authenticated users with author privileges to upload arbit... | Not Provided | 2007-05-16 | 2026-04-23 |
| CVE-2007-2732 json | Multiple cross-site scripting (XSS) vulnerabilities in Jetbox CMS allow remote attackers to inject arbitrary web script or HT... | Not Provided | 2007-05-16 | 2026-04-23 |
| CVE-2007-2731 json | CRLF injection vulnerability in formmail.php in Jetbox CMS 2.1 might allow remote attackers to inject arbitrary e-mail header... | Not Provided | 2007-05-16 | 2026-04-23 |
| CVE-2007-2686 json | Cross-site scripting (XSS) vulnerability in index.php in Jetbox CMS 2.1 allows remote attackers to inject arbitrary web scrip... | Not Provided | 2007-05-22 | 2026-04-23 |
| CVE-2007-2685 json | Multiple SQL injection vulnerabilities in index.php in Jetbox CMS 2.1 allow remote attackers to execute arbitrary SQL command... | Not Provided | 2007-05-21 | 2026-04-23 |
| CVE-2007-2684 json | Jetbox CMS 2.1 allows remote attackers to obtain sensitive information via (1) a direct request to (a) main_page.php, (b) ope... | Not Provided | 2007-05-21 | 2026-04-23 |
| CVE-2007-1898 json | formmail.php in Jetbox CMS 2.1 allows remote attackers to send arbitrary e-mails (spam) via modified recipient, _SETTINGS[all... | Not Provided | 2007-05-16 | 2026-04-23 |
| CVE-2006-4740 json | Jetbox CMS allows remote attackers to obtain sensitive information via a direct request for certain files, which reveal the p... | 5 - MEDIUM | 2006-09-13 | 2018-10-17 |
| CVE-2006-4739 json | Multiple cross-site scripting (XSS) vulnerabilities in Jetbox CMS allow remote attackers to inject arbitrary web script or HT... | 2.6 - LOW | 2006-09-13 | 2018-10-17 |
| CVE-2006-4738 json | PHP remote file inclusion vulnerability in phpthumb.php in Jetbox CMS allows remote attackers to execute arbitrary PHP code v... | 7.5 - HIGH | 2006-09-13 | 2018-10-17 |
| CVE-2006-4737 json | SQL injection vulnerability in index.php in Jetbox CMS allows remote attackers to inject arbitrary web script or HTML via the... | 7.5 - HIGH | 2006-09-13 | 2018-10-17 |
| CVE-2006-4422 json | ** DISPUTED ** PHP remote file inclusion vulnerability in includes/phpdig/libs/search_function.php in Jetbox CMS 2.1 allows ... | 7.5 - HIGH | 2006-08-29 | 2023-11-07 |
| CVE-2006-3586 json | SQL injection vulnerability in Jetbox CMS 2.1 SR1 allows remote attackers to execute arbitrary SQL commands via the (1) front... | 7.5 - HIGH | 2006-08-08 | 2018-10-18 |
| CVE-2006-3585 json | Multiple cross-site scripting (XSS) vulnerabilities in Jetbox CMS 2.1 SR1 allow remote attackers to inject arbitrary web scri... | 4.3 - MEDIUM | 2006-08-08 | 2018-10-18 |
| CVE-2006-3584 json | Dynamic variable evaluation vulnerability in index.php in Jetbox CMS 2.1 SR1 allows remote attackers to overwrite configurati... | 7.5 - HIGH | 2006-08-08 | 2018-10-18 |
| CVE-2006-3583 json | Session fixation vulnerability in Jetbox CMS 2.1 SR1 allows remote attackers to hijack web sessions via a crafted link and th... | 7.5 - HIGH | 2006-08-08 | 2018-10-18 |
| CVE-2006-2270 json | PHP remote file inclusion vulnerability in includes/config.php in Jetbox CMS 2.1 allows remote attackers to execute arbitrary... | Not Provided | 2006-05-09 | 2025-04-03 |
| CVE-2004-1448 json | Jetbox One 2.0.8 and possibly other versions allow remote attackers with Author privileges in the IMAGES module to upload PHP... | Not Provided | 2004-12-31 | 2025-04-03 |