Vulnerabilities (CVE)

Filtered by vendor Phpcms Subscribe
Filtered by product Phpcms 2008
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2011-0645 1 Phpcms 1 Phpcms 2008 2024-11-21 7.5 HIGH N/A
SQL injection vulnerability in data.php in PHPCMS 2008 V2 allows remote attackers to execute arbitrary SQL commands via the where_time parameter in a get action.
CVE-2011-0644 1 Phpcms 1 Phpcms 2008 2024-11-21 7.5 HIGH N/A
SQL injection vulnerability in include/admin/model_field.class.php in PHPCMS 2008 V2 allows remote attackers to execute arbitrary SQL commands via the modelid parameter to flash_upload.php.