Vulnerabilities > Associated
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2006-06-22 | CVE-2006-3151 | Cross-Site Scripting vulnerability in AssoCIateD Cross-site scripting (XSS) vulnerability in index.php in AssoCIateD (aka ACID) 1.2.0 and earlier allows remote attackers to inject arbitrary web script or HTML via the menu parameter. network associated | 4.3 |
2006-06-06 | CVE-2006-2841 | Remote File Include vulnerability in Associated CMS 1.1.3 Multiple PHP remote file inclusion vulnerabilities in AssoCIateD (aka ACID) CMS 1.1.3 allow remote attackers to execute arbitrary PHP code via a URL in the root_path parameter to (1) menu.php, (2) profile.php, (3) users.php, (4) cache_mngt.php, and (5) gallery_functions.php. | 7.5 |