Filtered by vendor Ariadne-cms
Subscribe
Total
2 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2017-20157 | 1 Ariadne-cms | 1 Ariadne Component Library | 2023-01-06 | N/A | 9.8 CRITICAL |
A vulnerability was found in Ariadne Component Library up to 2.x. It has been classified as critical. Affected is an unknown function of the file src/url/Url.php. The manipulation leads to server-side request forgery. Upgrading to version 3.0 is able to address this issue. It is recommended to upgrade the affected component. The identifier of this vulnerability is VDB-217140. | |||||
CVE-2008-7125 | 1 Ariadne-cms | 1 Ariadne Cms | 2017-08-16 | 9.0 HIGH | N/A |
pphoto in Ariadne before 2.6 allows remote authenticated users with certain privileges to execute arbitrary shell commands via vectors related to PINP programs and the annotate command. NOTE: some of these details are obtained from third party information. |