Back-end Cms@0.4.7 Security Vulnerabilities and Issues — Back-end Cms@0.4.7 CVE List

Lucene search

OpenconceptBack-end Cms0.4.7

2 matches found

CVE•added 2007/04/18 10:19 a.m.•43 views

CVE-2007-2097

Multiple PHP remote file inclusion vulnerabilities in OpenConcept Back-End CMS 0.4.7 allow remote attackers to execute arbitrary PHP code via a URL in the includes_path parameter to (1) click.php or (2) pollcollector.php in htdocs/; or (3) index.php, (4) articlepages.php, (5) articles.php, (6) arti...

7.5CVSS7.5AI score0.03717EPSS

CVE•added 2007/04/18 10:19 a.m.•43 views

CVE-2007-2099

Cross-site scripting (XSS) vulnerability in htdocs/php.php in OpenConcept Back-End CMS 0.4.7 allows remote attackers to inject arbitrary web script or HTML via the page[] parameter.

6.8CVSS5.7AI score0.00505EPSS