Total
4 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2006-2726 | 1 Fastpublish | 1 Fastpublish Cms | 2017-10-18 | 7.5 HIGH | N/A |
PHP remote file inclusion vulnerability in Fastpublish CMS 1.6.9.d allows remote attackers to include arbitrary files via the config[fsBase] parameter in (1) drucken.php, (2) drucken2.php, (3) email_an_benutzer.php, (4) rechnung.php, (5) suche/search.php and (6) adminbereich/admin.php. | |||||
CVE-2008-4518 | 1 Fastpublish | 1 Fastpublish Cms | 2017-09-28 | 7.5 HIGH | N/A |
Multiple SQL injection vulnerabilities in Fastpublish CMS 1.9.9.9.9 d (1.9999 d) allow remote attackers to execute arbitrary SQL commands via the (1) sprache parameter to index2.php and the (2) artikel parameter to index.php. | |||||
CVE-2008-4519 | 1 Fastpublish | 1 Fastpublish Cms | 2017-09-28 | 7.5 HIGH | N/A |
Multiple directory traversal vulnerabilities in Fastpublish CMS 1.9999 d allow remote attackers to include and execute arbitrary local files via a .. (dot dot) in the target parameter to (1) index2.php and (2) index.php. | |||||
CVE-2007-6325 | 1 Fastpublish | 1 Fastpublish Cms | 2017-09-28 | 6.8 MEDIUM | N/A |
PHP remote file inclusion vulnerability in adminbereich/designconfig.php in Fastpublish CMS 1.9999 allows remote attackers to execute arbitrary PHP code via a URL in the config[fsBase] parameter, a different vector than CVE-2006-2726. |