Vulnerabilities > Kjetiltroan

DATE CVE VULNERABILITY TITLE RISK
2010-04-06 CVE-2010-1267 Path Traversal vulnerability in Kjetiltroan Webmaid CMS
Multiple directory traversal vulnerabilities in WebMaid CMS 0.2-6 Beta and earlier allow remote attackers to read arbitrary files via directory traversal sequences in the com parameter to (1) cContactus.php, (2) cGuestbook.php, and (3) cArticle.php.
network
low complexity
kjetiltroan CWE-22
5.0
2010-04-06 CVE-2010-1266 Code Injection vulnerability in Kjetiltroan Webmaid CMS
Multiple PHP remote file inclusion vulnerabilities in WebMaid CMS 0.2-6 Beta and earlier allow remote attackers to execute arbitrary PHP code via a URL in the (1) template, (2) menu, (3) events, and (4) SITEROOT parameters to template/babyweb/index.php; the (5) modules and (6) copyright parameters to template/calm/footer.php; the (7) menu parameter to template/calm/top.php; and the (8) modules, (9) copyright, and (10) menu parameters to template/wm025/footer.php.
network
low complexity
kjetiltroan CWE-94
7.5