Vulnerabilities > AY System Solutions

DATE CVE VULNERABILITY TITLE RISK
2007-03-30 CVE-2007-1771 Remote File Include vulnerability in AY System Solutions web Content System 2.7.1
PHP remote file inclusion vulnerability in manage/javascript/formjavascript.php in Ay System Solutions Web Content System (WCS) 2.7.1 allows remote attackers to execute arbitrary PHP code via a URL in the path[JavascriptEdit] parameter.
network
ay-system-solutions
critical
9.3
2006-08-29 CVE-2006-4441 Remote Security vulnerability in Ay System Solutions Cms
Multiple PHP remote file inclusion vulnerabilities in Ay System Solutions CMS 2.6 and earlier allow remote attackers to execute arbitrary PHP code via a URL in the path[ShowProcessHandle] parameter to (1) home.php or (2) impressum.php.
network
low complexity
ay-system-solutions
7.5
2006-08-29 CVE-2006-4440 Remote Security vulnerability in Ay System Solutions Cms
PHP remote file inclusion vulnerability in main.php in Ay System Solutions CMS 2.6 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the path[ShowProcessHandle] parameter.
network
low complexity
ay-system-solutions
7.5