Vulnerabilities > 1024 CMS > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2008-04-22 | CVE-2008-1911 | SQL Injection vulnerability in 1024 CMS 1024 CMS 1.4.2 SQL injection vulnerability in includes/system.php in 1024 CMS 1.4.2 beta and earlier, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via a cookpass cookie. | 6.8 |
| 2007-12-28 | CVE-2007-6584 | Path Traversal vulnerability in 1024 CMS 1024 CMS 1.3.1/1.4.1/1.4.2 Multiple directory traversal vulnerabilities in 1024 CMS 1.3.1 allow remote attackers to include and execute arbitrary local files via a .. | 6.4 |