Vulnerabilities > Zero CMS

DATE	CVE	VULNERABILITY TITLE	RISK
2008-01-11	CVE-2008-0233	Permissions, Privileges, and Access Controls vulnerability in Zero CMS Zero CMS 1.0Alpha Unrestricted file upload vulnerability in Zero CMS 1.0 Alpha and earlier allows remote attackers to bypass intended access restrictions and upload and execute arbitrary files by uploading an avatar file with an accepted Content-Type such as image/jpeg. network low complexity zero-cms CWE-264	7.5
2008-01-11	CVE-2008-0232	SQL Injection vulnerability in Zero CMS Zero CMS 1.0Alpha Multiple SQL injection vulnerabilities in Zero CMS 1.0 Alpha allow remote attackers to execute arbitrary SQL commands via (1) the id parameter to index.php, or the (2) f or t parameters to forums/index.php. network low complexity zero-cms CWE-89	7.5

Vulnerabilities > Zero CMS {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Zero CMS"}]}