Vulnerabilities > E Vision
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2009-03-30 | CVE-2008-6551 | Path Traversal vulnerability in E-Vision CMS 1.0 Multiple directory traversal vulnerabilities in e-Vision CMS 2.0.2 and earlier, when magic_quotes_gpc is disabled, allow remote attackers to include and execute arbitrary local files via a .. | 5.1 |
2008-02-21 | CVE-2008-0856 | SQL Injection vulnerability in E-Vision CMS 2.02 Multiple SQL injection vulnerabilities in e-Vision CMS 2.02 allow remote attackers to execute arbitrary SQL commands via the id parameter to (1) iframe.php and (2) print.php. | 7.5 |
2007-06-18 | CVE-2007-3251 | Input Validation vulnerability in E-Vision CMS Multiple directory traversal vulnerabilities in e-Vision CMS 2.02 and earlier allow remote attackers to (1) include and execute arbitrary local files via a .. | 7.8 |
2007-06-14 | CVE-2007-3214 | Input Validation vulnerability in E-Vision CMS SQL injection vulnerability in style.php in e-Vision CMS 2.02 and earlier, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the template parameter. network e-vision | 6.8 |
2006-09-27 | CVE-2006-5017 | Input Validation vulnerability in E-Vision CMS 1.0 SQL injection vulnerability in admin/all_users.php in Szava Gyula and Csaba Tamas e-Vision CMS, probably 1.0, allows remote attackers to execute arbitrary SQL commands via the from parameter. | 7.5 |
2006-09-27 | CVE-2006-5016 | Remote File Include vulnerability in E-Vision CMS 1.0 Unrestricted file upload vulnerability in admin/x_image.php in Szava Gyula and Csaba Tamas e-Vision CMS, probably 1.0, allows remote attackers to upload arbitrary files to the /imagebank directory. | 5.0 |