RSS   Vulnerabilities for 'Maurycms'   RSS

2009-08-12
 
CVE-2008-6952

 

 
SQL injection vulnerability in Rss.php in MauryCMS 0.53.2 and earlier allows remote attackers to execute arbitrary SQL commands via the c parameter.

 
 
CVE-2008-6951

 

 
MauryCMS 0.53.2 and earlier does not require administrative authentication for Editors/fckeditor/editor/filemanager/browser/default/browser.html, which allows remote attackers to upload arbitrary files via a direct request.

 

 >>> Vendor: Cms.maury91 2 Products
Solarcms
Maurycms


Copyright 2024, cxsecurity.com

 

Back to Top