Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
PhpcmsPhpcms 2008

2 matches found

CVE
CVEadded 2011/01/25 6:0 p.m.45 views

CVE-2011-0644

CVE-2011-0644 describes a SQL injection vulnerability in PHPCMS 2008 V2, specifically in the include/admin/model_field.class.php file. The issue can be exploited via the modelid parameter to flash_upload.php, enabling remote attackers to execute arbitrary SQL commands. Connected sources (NVD/NIST...

7.5CVSS8.7AI score0.00265EPSS
Web
CVE
CVEadded 2011/01/25 6:0 p.m.33 views

CVE-2011-0645

CVE-2011-0645 corresponds to a SQL injection in PHPCMS 2008 V2, specifically in data.php via the where_time parameter of a get action, enabling remote arbitrary SQL execution. The vulnerability is due to improper handling of user-supplied input in the query, as reported across multiple sources (N...

7.5CVSS8.6AI score0.00308EPSS