Vulnerabilities > Efstratios Geroulis
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2007-06-21 | CVE-2007-3313 | SQL-Injection vulnerability in Efstratios Geroulis Jasmine CMS 1.0 Multiple SQL injection vulnerabilities in Jasmine CMS 1.0 allow remote attackers to execute arbitrary SQL commands via (1) the login_username parameter to login.php or (2) the item parameter to news.php. | 7.5 |
2007-06-21 | CVE-2007-3312 | Input Validation vulnerability in Efstratios Geroulis Jasmine CMS 1.0 Directory traversal vulnerability in admin/plugin_manager.php in Jasmine CMS 1.0 allows remote authenticated administrators to include and execute arbitrary local files a .. | 9.0 |