📦 Hoosk

CVE-2020-26041 is a remote code execution vulnerability in Hoosk CMS v1.8.0's install/index.php file that allows attackers to execute arbitrary code on affected systems. This affects all Hoosk CMS v1....

CVE-2018-16771 is a critical remote code execution vulnerability in Hoosk CMS v1.7.0 that allows attackers to execute arbitrary PHP code by manipulating the SiteUrl parameter during installation. This...

A Cross-Site Scripting (XSS) vulnerability in HooskCMS v1.8 allows remote attackers to inject malicious scripts via the custom Link title and Title parameters. This could lead to session hijacking, de...

A SQL injection vulnerability in HooskCMS v1.7.1 allows remote attackers to extract sensitive database information through the /install/index.php component. This affects all HooskCMS v1.7.1 installati...