Vulnerabilities > Deeemm > Dmcms

DATE CVE VULNERABILITY TITLE RISK
2008-08-20 CVE-2008-3721 Code Injection vulnerability in Deeemm Dmcms 0.7.4
PHP remote file inclusion vulnerability in user_language.php in DeeEmm CMS (DMCMS) 0.7.4 allows remote attackers to execute arbitrary PHP code via a URL in the language_dir parameter.
network
low complexity
deeemm CWE-94
7.5
7.5
2008-08-20 CVE-2008-3720 SQL Injection vulnerability in Deeemm Dmcms 0.7.4
SQL injection vulnerability in index.php in DeeEmm CMS (DMCMS) 0.7.4 allows remote attackers to execute arbitrary SQL commands via the page parameter.
network
low complexity
deeemm CWE-89
7.5
7.5
2007-10-25 CVE-2007-5679 SQL Injection vulnerability in Deeemm Dmcms 0.7.0/0.7.4
SQL injection vulnerability in index.php in DeeEmm.com DM CMS 0.7.0.Beta allows remote attackers to execute arbitrary SQL commands via the id parameter in the media page (build_media_content.php).
network
low complexity
deeemm CWE-89
7.5
7.5