Vulnerabilities (CVE)

Filtered by vendor Entertainment Cms Subscribe
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2007-3704 1 Entertainment Cms 1 Entertainment Cms 2024-02-28 7.5 HIGH N/A
Entertainment CMS allows remote attackers to bypass authentication and perform certain administrative actions by setting the adminLogged cookie to "Administrator."
CVE-2007-4008 1 Entertainment Cms 1 Entertainment Cms 2024-02-28 7.5 HIGH N/A
Directory traversal vulnerability in custom.php in Entertainment Media Sharing CMS allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the pagename parameter.