Vulnerabilities > Cmscout > Cmscout > 2.06
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2009-04-17 | CVE-2008-6726 | Path Traversal vulnerability in Cmscout 2.06 Multiple directory traversal vulnerabilities in CMScout 2.06, when register_globals is enabled, allow remote attackers to include and execute arbitrary local files via a .. | 6.0 |
2009-04-17 | CVE-2008-6725 | SQL Injection vulnerability in Cmscout 2.06 Multiple SQL injection vulnerabilities in CMScout 2.06 allow remote authenticated users to execute arbitrary SQL commands via the id parameter to (1) index.php in a mythings page (mythings.php) and (2) the users page in admin.php. | 6.0 |