RSS   Vulnerabilities for 'All club cms'   RSS

2008-02-06
 
CVE-2008-0602

CWE-22
 

 
Directory traversal vulnerability in index.php in All Club CMS (ACCMS) 0.0.1f and earlier allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the class_name parameter.

 
 
CVE-2008-0601

CWE-89
 

 
SQL injection vulnerability in index.php in All Club CMS (ACCMS) 0.0.1f and earlier allows remote attackers to execute arbitrary SQL commands via the name parameter.

 


Copyright 2017, cxsecurity.com