Vulnerabilities > Phome Empire
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2009-07-01 | CVE-2009-2269 | SQL Injection vulnerability in Phome Empire Phome Empire CMS 5.1 SQL injection vulnerability in Empire CMS 5.1 allows remote attackers to execute arbitrary SQL commands via the bid parameter to the default URI under e/tool/gbook/. | 7.5 |
2006-08-27 | CVE-2006-4354 | Remote File Include vulnerability in Phome Empire Phome Empire CMS 3.7 PHP remote file inclusion vulnerability in e/class/CheckLevel.php in Phome Empire CMS 3.7 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the check_path parameter. | 7.5 |