Vulnerabilities > Phome Empire

DATE CVE VULNERABILITY TITLE RISK
2009-07-01 CVE-2009-2269 SQL Injection vulnerability in Phome Empire Phome Empire CMS 5.1
SQL injection vulnerability in Empire CMS 5.1 allows remote attackers to execute arbitrary SQL commands via the bid parameter to the default URI under e/tool/gbook/.
network
low complexity
phome-empire CWE-89
7.5
2006-08-27 CVE-2006-4354 Remote File Include vulnerability in Phome Empire Phome Empire CMS 3.7
PHP remote file inclusion vulnerability in e/class/CheckLevel.php in Phome Empire CMS 3.7 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the check_path parameter.
network
low complexity
phome-empire
7.5