Vulnerabilities > Cfagcms > Cfagcms > 1.0

DATE CVE VULNERABILITY TITLE RISK
2009-01-21 CVE-2008-5922 Code Injection vulnerability in Cfagcms 1.0
Multiple PHP remote file inclusion vulnerabilities in themes/default/index.php in Cant Find A Gaming CMS (CFAGCMS) 1 allow remote attackers to execute arbitrary PHP code via a URL in the (1) main and (2) right parameters.
network
low complexity
cfagcms CWE-94
7.5
2008-12-30 CVE-2008-5781 SQL Injection vulnerability in Cfagcms 1.0
SQL injection vulnerability in right.php in Cant Find A Gaming CMS (CFAGCMS) 1.0 Beta 1 allows remote attackers to execute arbitrary SQL commands via the title parameter.
network
low complexity
cfagcms CWE-89
7.5