Vulnerabilities > Ttcms > Ttforum > 4
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2007-03-27 | CVE-2007-1708 | Remote File Include vulnerability in TTCMS EZ_SQL.PHP PHP remote file inclusion vulnerability in lib/db/ez_sql.php in ttCMS 4 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the lib_path parameter. | 7.5 |
| 2003-06-09 | CVE-2003-0331 | SQL-Injection vulnerability in Ttcms Ttforum 4 SQL injection vulnerability in ttForum allows remote attackers to execute arbitrary SQL and gain ttForum Administrator privileges via the Ignorelist-Textfield argument in the Preferences page. | 10.0 |