RSS   Vulnerabilities for 'Siteframe cms'   RSS

2009-07-13
 
CVE-2009-2443

CWE-264
 

 
Siteframe 3.2.3, and other 3.2.x versions, allows remote attackers to obtain configuration information via a direct request to phpinfo.php, which calls the phpinfo function.

 
2008-07-22
 
CVE-2008-3256

CWE-89
 

 
SQL injection vulnerability in folder.php in Siteframe CMS 3.2.3 and earlier, and Siteframe Beaumont 5.0.5 and earlier, allows remote attackers to execute arbitrary SQL commands via the id parameter.

 

 >>> Vendor: Siteframe 2 Products
Siteframe beaumont
Siteframe cms


Copyright 2024, cxsecurity.com

 

Back to Top