Vulnerabilities > E Vision > E Vision CMS > 1.0
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2009-03-30 | CVE-2008-6551 | Path Traversal vulnerability in E-Vision CMS 1.0 Multiple directory traversal vulnerabilities in e-Vision CMS 2.0.2 and earlier, when magic_quotes_gpc is disabled, allow remote attackers to include and execute arbitrary local files via a .. | 5.1 |
2006-09-27 | CVE-2006-5017 | Input Validation vulnerability in E-Vision CMS 1.0 SQL injection vulnerability in admin/all_users.php in Szava Gyula and Csaba Tamas e-Vision CMS, probably 1.0, allows remote attackers to execute arbitrary SQL commands via the from parameter. | 7.5 |
2006-09-27 | CVE-2006-5016 | Remote File Include vulnerability in E-Vision CMS 1.0 Unrestricted file upload vulnerability in admin/x_image.php in Szava Gyula and Csaba Tamas e-Vision CMS, probably 1.0, allows remote attackers to upload arbitrary files to the /imagebank directory. | 5.0 |