Vulnerabilities > Picoflat CMS > Picoflat CMS
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2007-11-10 | CVE-2007-5920 | Path Traversal vulnerability in Picoflat CMS Picoflat CMS index.php in Domenico Mancini PicoFlat CMS before 0.4.18 allows remote attackers to include certain files via unspecified vectors, possibly due to a directory traversal vulnerability. | 6.8 |
| 2007-10-12 | CVE-2007-5390 | Code Injection vulnerability in Picoflat CMS Picoflat CMS PHP remote file inclusion vulnerability in index.php in PicoFlat CMS 0.4.14 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the pagina parameter. | 6.8 |