Vulnerabilities > Bigace > Bigace CMS > 2.5
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2009-05-22 | CVE-2009-1778 | SQL Injection vulnerability in Bigace CMS 2.5 SQL injection vulnerability in the new user registration feature in BigACE CMS 2.5, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the username parameter. | 6.8 |