Max CVSS | 7.5 | Min CVSS | 6.8 | Total Count | 2 |
ID | CVSS | Summary | Last (major) update | Published | |
CVE-2008-2482 | 7.5 |
Directory traversal vulnerability in install_mod.php in insanevisions OneCMS 2.5 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the load parameter in a go action.
|
11-10-2018 - 20:41 | 28-05-2008 - 15:32 | |
CVE-2010-0952 | 6.8 |
SQL injection vulnerability in index.php in OneCMS 2.5, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the user parameter in an elite action.
|
17-08-2017 - 01:32 | 10-03-2010 - 20:14 |