RSS   Vulnerabilities for 'Pecio cms'   RSS

2010-09-03
 
CVE-2010-3204

CWE-94
 

 
Multiple PHP remote file inclusion vulnerabilities in Pecio CMS 2.0.5 allow remote attackers to execute arbitrary PHP code via a URL in the template parameter to (1) post.php, (2) article.php, (3) blog.php, or (4) home.php in pec_templates/nova-blue/.

 
2009-05-04
 
CVE-2009-1519

CWE-22
 

 
Directory traversal vulnerability in index.php in Pecio CMS 1.1.5 allows remote attackers to read arbitrary files via a .. (dot dot) in the language parameter.

 


Copyright 2024, cxsecurity.com

 

Back to Top