RSS   Vulnerabilities for 'All club cms'   RSS

2008-02-06
 
CVE-2008-0602

CWE-22
 

 
Directory traversal vulnerability in index.php in All Club CMS (ACCMS) 0.0.1f and earlier allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the class_name parameter.

 
 
CVE-2008-0601

CWE-89
 

 
SQL injection vulnerability in index.php in All Club CMS (ACCMS) 0.0.1f and earlier allows remote attackers to execute arbitrary SQL commands via the name parameter.

 


Copyright 2017, cxsecurity.com

 

Back to Top