Total
2 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2008-5491 | 1 Slimcms | 1 Slimcms | 2017-09-28 | 7.5 HIGH | N/A |
SQL injection vulnerability in edit.php in SlimCMS 1.0.0 and earlier allows remote attackers to execute arbitrary SQL commands via the pageID parameter. | |||||
CVE-2008-5708 | 1 Slimcms | 1 Slimcms | 2017-09-28 | 7.5 HIGH | N/A |
redirect.php in SlimCMS 1.0.0 does not require authentication, which allows remote attackers to create administrative users by using the newusername and newpassword parameters and setting the newisadmin parameter to 1. |