Vulnerabilities > E Vision > E Vision CMS > 1.0

DATE CVE VULNERABILITY TITLE RISK
2009-03-30 CVE-2008-6551 Path Traversal vulnerability in E-Vision CMS 1.0
Multiple directory traversal vulnerabilities in e-Vision CMS 2.0.2 and earlier, when magic_quotes_gpc is disabled, allow remote attackers to include and execute arbitrary local files via a ..
network
high complexity
e-vision CWE-22
5.1
5.1
2006-09-27 CVE-2006-5017 Input Validation vulnerability in E-Vision CMS 1.0
SQL injection vulnerability in admin/all_users.php in Szava Gyula and Csaba Tamas e-Vision CMS, probably 1.0, allows remote attackers to execute arbitrary SQL commands via the from parameter.
network
low complexity
e-vision
7.5
7.5
2006-09-27 CVE-2006-5016 Remote File Include vulnerability in E-Vision CMS 1.0
Unrestricted file upload vulnerability in admin/x_image.php in Szava Gyula and Csaba Tamas e-Vision CMS, probably 1.0, allows remote attackers to upload arbitrary files to the /imagebank directory.
network
low complexity
e-vision
5.0
5.0