XHP : Security Vulnerabilities, CVEs,
Laurentiu Matei eXpandable Home Page (XHP) CMS 0.5 and earlier allows remote authenticated users to use the HTMLArea FileManager plugin to upload and execute arbitrary PHP files using (1) manager.php, (2) standalonemanager.php, and (3) images.php.
Max CVSS
9.0
EPSS Score
3.19%
Published
2006-03-23
Updated
2017-10-11
1 vulnerabilities found