Vulnerabilities > Thorcms
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2006-06-28 | CVE-2006-3270 | SQL-Injection vulnerability in Thorcms 1.3.1 SQL injection vulnerability in cms_admin.php in THoRCMS 1.3.1 allows remote attackers to execute arbitrary SQL commands via multiple unspecified parameters, such as the add_link_mid parameter. | 7.5 |
2006-06-28 | CVE-2006-3269 | Remote File Include vulnerability in Thorcms 1.3.1 PHP remote file inclusion vulnerability in includes/functions_cms.php in THoRCMS 1.3.1 allows remote attackers to execute arbitrary PHP code via the phpbb_root_path parameter. | 5.1 |