Vulnerabilities > Runcms

DATE	CVE	VULNERABILITY TITLE	RISK
2005-08-24	CVE-2005-2691	Remote Security vulnerability in Runcms 1.1/1.1A/1.2 includes/common.php in RunCMS 1.2 and earlier calls the extract function with EXTR_OVERWRITE on HTTP POST variables, which allows remote attackers to overwrite arbitrary variables, possibly allowing execution of arbitrary code. network low complexity runcms	7.5
2005-05-02	CVE-2005-1031	Remote Arbitrary File Upload vulnerability in RunCMS RUNCMS 1.1A, and possibly other products based on e-Xoops (exoops), when "Allow custom avatar upload" is enabled, does not properly verify uploaded files, which allows remote attackers to upload arbitrary files. network low complexity e-xoops runcms	5.0

Vulnerabilities > Runcms {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Runcms"}]}