Max CVSS | 7.5 | Min CVSS | 6.5 | Total Count | 2 |
ID | CVSS | Summary | Last (major) update | Published | |
CVE-2010-3483 | 7.5 |
cms_write.php in Primitive CMS 1.0.9 does not properly restrict access, which allows remote attackers to gain administrative privileges via a direct request. NOTE: this vulnerability can be leveraged to conduct cross-site scripting attacks, as demon
|
23-09-2010 - 04:00 | 22-09-2010 - 20:00 | |
CVE-2010-3482 | 6.5 |
Multiple SQL injection vulnerabilities in cms_write.php in Primitive CMS 1.0.9 allow remote authenticated administrators to execute arbitrary SQL commands via the (1) title and (2) menutitle parameters. NOTE: this can be leveraged with CVE-2010-3483
|
23-09-2010 - 04:00 | 22-09-2010 - 20:00 |