Lucene search
Zanfi SolutionsZanfi Cms Lite
2 matches found
CVE-2008-4158
Multiple directory traversal vulnerabilities in index.php in Zanfi CMS lite 1.2 allow remote attackers to include and execute arbitrary local files via a .. (dot dot) in the (1) flag and (2) inc parameters.
6.8CVSS7.3AI score0.01124EPSS
CVE-2008-4159
SQL injection vulnerability in index.php in Jaw Portal and Zanfi CMS lite and allows remote attackers to execute arbitrary SQL commands via the page (pageid) parameter.
7.5CVSS8.4AI score0.00144EPSS