Vulnerabilities > Runcms > Runcms > 1.3a
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2006-03-14 | CVE-2006-1216 | Cross-Site Scripting vulnerability in RunCMS Cross-site scripting (XSS) vulnerability in bigshow.php in Runcms 1.x allows remote attackers to inject arbitrary web script or HTML via the id parameter. network runcms | 4.3 |
2006-02-24 | CVE-2006-0875 | Cross-Site Scripting vulnerability in RunCMS Cross-site scripting vulnerability in ratefile.php in RunCMS 1.3a5 allows remote attackers to inject arbitrary web script or HTML via the lid parameter. | 5.0 |
2006-02-16 | CVE-2006-0721 | SQL Injection vulnerability in Runcms 1.2/1.3A/1.3A2 SQL injection vulnerability in pmlite.php in RunCMS 1.2 and 1.3a allows remote attackers to execute arbitrary SQL commands via the to_userid parameter. | 7.5 |