Vulnerabilities > Genixcms > High

DATE CVE VULNERABILITY TITLE RISK
2017-01-01 CVE-2016-10096 SQL Injection vulnerability in Genixcms
SQL injection vulnerability in register.php in GeniXCMS before 1.0.0 allows remote attackers to execute arbitrary SQL commands via the activation parameter.
network
low complexity
genixcms CWE-89
7.5
7.5
2015-03-23 CVE-2015-2679 SQL Injection vulnerability in Genixcms 0.0.1
Multiple SQL injection vulnerabilities in MetalGenix GeniXCMS before 0.0.2 allow remote attackers to execute arbitrary SQL commands via the (1) page parameter to index.php or (2) username parameter to gxadmin/login.php.
network
low complexity
genixcms CWE-89
7.5
7.5