Vulnerabilities > Spoonlabs > Vivvo Article Management CMS > 3.2
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2006-09-12 | CVE-2006-4715 | SQL Injection vulnerability in Spoonlabs Vivvo Article Management CMS 3.2 SQL injection vulnerability in pdf_version.php in SpoonLabs Vivvo Article Management CMS (aka phpWordPress) 3.2 and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter. | 7.5 |
2006-09-12 | CVE-2006-4714 | Remote Security vulnerability in Spoonlabs Vivvo Article Management CMS 3.2 PHP remote file inclusion vulnerability in index.php in SpoonLabs Vivvo Article Management CMS (aka phpWordPress) 3.2 and earlier, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the classified_path parameter. | 5.1 |