Vulnerabilities > Sinecms > Sinecms > 2.3.4
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2009-09-04 | CVE-2008-7163 | Path Traversal vulnerability in Sinecms Directory traversal vulnerability in mods/Integrated/index.php in SineCMS 2.3.5 and earlier, when register_globals is enabled, allows remote attackers to include and execute arbitrary local files via the sine[config][index_main] parameter. | 6.8 |
2007-04-30 | CVE-2007-2357 | Cross-Site Scripting vulnerability in Sinecms 2.3.4 Cross-site scripting (XSS) vulnerability in mods/Core/result.php in SineCms 2.3.4 allows remote attackers to inject arbitrary web script or HTML via the stringa parameter. network sinecms | 6.8 |