Vulnerabilities > Aprox

DATE CVE VULNERABILITY TITLE RISK
2008-07-24 CVE-2008-3291 SQL Injection vulnerability in Aprox CMS Engine and Aproxengine
SQL injection vulnerability in index.php in AproxEngine (aka Aprox CMS Engine) 5.1.0.4 allows remote attackers to execute arbitrary SQL commands via the id parameter.
network
low complexity
aprox CWE-89
7.5
2008-06-27 CVE-2008-2895 Path Traversal vulnerability in Aprox Aproxengine 5.1.0.4
Directory traversal vulnerability in index.php in AproxEngine 5.1.0.4 allows remote attackers to include and execute arbitrary local files via a ..
network
low complexity
aprox CWE-22
7.5