Vulnerabilities > Bigace > Bigace CMS
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2009-07-08 | CVE-2009-2379 | Path Traversal vulnerability in Bigace CMS 2.6 Directory traversal vulnerability in public/index.php in BIGACE Web CMS 2.6 allows remote attackers to include and execute arbitrary local files via a .. | 6.8 |
| 2009-05-22 | CVE-2009-1778 | SQL Injection vulnerability in Bigace CMS 2.5 SQL injection vulnerability in the new user registration feature in BigACE CMS 2.5, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the username parameter. | 6.8 |