Vulnerabilities > Traza

DATE CVE VULNERABILITY TITLE RISK
2009-09-24 CVE-2009-3365 Code Injection vulnerability in Traza Aurora 1.0.2
PHP remote file inclusion vulnerability in add-ons/modules/sysmanager/plugins/install.plugin.php in Aurora CMS 1.0.2 allows remote attackers to execute arbitrary PHP code via a URL in the AURORA_MODULES_FOLDER parameter.
network
low complexity
traza CWE-94
7.5