Vulnerabilities > Lightro
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2007-02-13 | CVE-2007-0904 | SQL-Injection vulnerability in Lightro CMS 1.0 SQL injection vulnerability in projects.php in LightRO CMS 1.0 allows remote attackers to execute arbitrary SQL commands via the ID parameter to index.php. | 7.5 |
2007-02-07 | CVE-2007-0824 | Remote File Include vulnerability in Lightro CMS 1Beta PHP remote file inclusion vulnerability in inhalt.php in LightRO CMS 1.0 allows remote attackers to execute arbitrary PHP code via a URL in the dateien[news] parameter. | 7.5 |