Vulnerabilities > Sphere Xlentprojects
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2010-03-23 | CVE-2010-1078 | SQL Injection vulnerability in Sphere.Xlentprojects Spherecms 1.1 SQL injection vulnerability in archive.php in XlentProjects SphereCMS 1.1 alpha allows remote attackers to execute arbitrary SQL commands via encoded null bytes ("%00") in the view parameter, which bypasses a protection mechanism. | 7.5 |