Vulnerabilities > Bare Concept Media
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2006-09-07 | CVE-2006-4621 | Remote Security vulnerability in Bare Concept Media Pheap CMS 1.1 PHP remote file inclusion vulnerability in settings.php in Pheap 1.2, and possibly earlier, allows remote attackers to execute arbitrary PHP code via a URL in the lpref parameter. | 7.5 |
| 2006-09-01 | CVE-2006-4531 | Remote File Include vulnerability in Pheap Config.PHP PHP remote file inclusion vulnerability in lib/config.php in Pheap CMS 1.1 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the lpref parameter. | 7.5 |