Vulnerabilities > Drake Team > Drake CMS > 0.3.7
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2007-04-03 | CVE-2007-1849 | Local File Include vulnerability in Drake Team Drake CMS 0.3.7/0.3.7Beta Directory traversal vulnerability in 404.php in Drake CMS allows remote attackers to include and execute arbitrary local arbitrary files via a .. | 7.5 |
| 2007-04-03 | CVE-2007-1848 | Cross-Site Scripting vulnerability in Drake Team Drake CMS 0.3.7/0.3.7Beta Cross-site scripting (XSS) vulnerability in admin/classes/ui.dta.php in Drake CMS allows remote attackers to inject arbitrary web script or HTML via the desc[][title] field. network drake-team | 4.3 |