Vulnerabilities > Theratstudios

DATE CVE VULNERABILITY TITLE RISK
2009-09-11 CVE-2009-3173 Unspecified vulnerability in Theratstudios the RAT CMS 2
Unrestricted file upload vulnerability in admin/add_album.php in The Rat CMS Alpha 2 allows remote attackers to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in images/.
network
theratstudios
6.8
2008-11-19 CVE-2008-5164 Cross-Site Scripting vulnerability in Theratstudios the RAT CMS 2
Multiple cross-site scripting (XSS) vulnerabilities in The Rat CMS Pre-Alpha 2 allow remote attackers to inject arbitrary web script or HTML via the (1) id parameter to (a) viewarticle.php and (b) viewarticle2.php and the (2) PATH_INFO to viewarticle.php.
4.3
2008-11-19 CVE-2008-5163 SQL Injection vulnerability in Theratstudios the RAT CMS 2
Multiple SQL injection vulnerabilities in The Rat CMS Pre-Alpha 2 allow remote attackers to execute arbitrary SQL commands via the id parameter to (1) viewarticle.php and (2) viewarticle2.php.
network
low complexity
theratstudios CWE-89
7.5