Total
5 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2007-3939 | 1 Spoonlabs | 1 Vivvo Article Management Cms | 2024-02-28 | 6.8 MEDIUM | N/A |
SQL injection vulnerability in index.php in SpoonLabs Vivvo Article Management CMS (aka phpWordPress) CMS 3.4 and earlier allows remote attackers to execute arbitrary SQL commands via the category parameter. | |||||
CVE-2007-1031 | 1 Spoonlabs | 1 Vivvo Article Management Cms | 2024-02-28 | 6.8 MEDIUM | N/A |
Directory traversal vulnerability in include/db_conn.php in SpoonLabs Vivvo Article Management CMS 3.4 allows remote attackers to include and execute arbitrary local files via the root parameter. | |||||
CVE-2007-0574 | 1 Spoonlabs | 1 Vivvo Article Management Cms | 2024-02-28 | 7.5 HIGH | N/A |
SQL injection vulnerability in rss/show_webfeed.php in SpoonLabs Vivvo Article Management CMS (aka phpWordPress) 3.40 allows remote attackers to execute arbitrary SQL commands via the wcHeadlines parameter, a different vector than CVE-2006-4715. NOTE: The provenance of this information is unknown; the details are obtained solely from third party information. | |||||
CVE-2006-4715 | 1 Spoonlabs | 1 Vivvo Article Management Cms | 2024-02-28 | 7.5 HIGH | N/A |
SQL injection vulnerability in pdf_version.php in SpoonLabs Vivvo Article Management CMS (aka phpWordPress) 3.2 and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter. | |||||
CVE-2006-4714 | 1 Spoonlabs | 1 Vivvo Article Management Cms | 2024-02-28 | 5.1 MEDIUM | N/A |
PHP remote file inclusion vulnerability in index.php in SpoonLabs Vivvo Article Management CMS (aka phpWordPress) 3.2 and earlier, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the classified_path parameter. |