Vulnerabilities > Bigace > Bigace CMS > 2.5

DATE	CVE	VULNERABILITY TITLE	RISK
2009-05-22	CVE-2009-1778	SQL Injection vulnerability in Bigace CMS 2.5 SQL injection vulnerability in the new user registration feature in BigACE CMS 2.5, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the username parameter. network bigace CWE-89	6.8

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.