Runcms

Runcms

31 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.5

CVE-2006-4667

  • EPSS 1.98%
  • Veröffentlicht 09.09.2006 00:04:00
  • Zuletzt bearbeitet 03.04.2025 01:03:51

Multiple SQL injection vulnerabilities in RunCMS 1.4.1 allow remote attackers to execute arbitrary SQL commands via the (1) uid parameter in (a) class/sessions.class.php, and the (2) timezone_offset and (3) umode parameters in (b) class/xoopsuser.php...

7.6

CVE-2006-1793

Exploit
  • EPSS 2.28%
  • Veröffentlicht 17.04.2006 10:02:00
  • Zuletzt bearbeitet 03.04.2025 01:03:51

Directory traversal vulnerability in runCMS 1.2 and earlier allows remote attackers to read arbitrary files via the bbPath[path] parameter to (1) class.forumposts.php and (2) forumpollrenderer.php. NOTE: this issue is closely related to CVE-2006-0659...

4.3

CVE-2006-1216

Exploit
  • EPSS 8.25%
  • Veröffentlicht 14.03.2006 02:02:00
  • Zuletzt bearbeitet 03.04.2025 01:03:51

Cross-site scripting (XSS) vulnerability in bigshow.php in Runcms 1.x allows remote attackers to inject arbitrary web script or HTML via the id parameter.

5

CVE-2006-0875

Exploit
  • EPSS 5.61%
  • Veröffentlicht 24.02.2006 11:02:00
  • Zuletzt bearbeitet 03.04.2025 01:03:51

Cross-site scripting vulnerability in ratefile.php in RunCMS 1.3a5 allows remote attackers to inject arbitrary web script or HTML via the lid parameter.

7.5

CVE-2006-0721

Exploit
  • EPSS 1.24%
  • Veröffentlicht 16.02.2006 11:02:00
  • Zuletzt bearbeitet 03.04.2025 01:03:51

SQL injection vulnerability in pmlite.php in RunCMS 1.2 and 1.3a allows remote attackers to execute arbitrary SQL commands via the to_userid parameter.

6.8

CVE-2006-0659

Exploit
  • EPSS 5.82%
  • Veröffentlicht 13.02.2006 11:06:00
  • Zuletzt bearbeitet 03.04.2025 01:03:51

Multiple PHP remote file include vulnerabilities in RunCMS 1.2 and earlier, with register_globals and allow_url_fopen enabled, allow remote attackers to execute arbitrary code via the bbPath[path] parameter in (1) class.forumposts.php and (2) forumpo...

7.5

CVE-2005-2692

Exploit
  • EPSS 0.96%
  • Veröffentlicht 24.08.2005 04:00:00
  • Zuletzt bearbeitet 03.04.2025 01:03:51

Multiple SQL injection vulnerabilities in RunCMS 1.2 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) addquery and (2) subquery parameters to the newbb plus module, the forum parameter to (3) newtopic.php, (4) edit.php...

7.5

CVE-2005-2691

  • EPSS 1.72%
  • Veröffentlicht 24.08.2005 04:00:00
  • Zuletzt bearbeitet 03.04.2025 01:03:51

includes/common.php in RunCMS 1.2 and earlier calls the extract function with EXTR_OVERWRITE on HTTP POST variables, which allows remote attackers to overwrite arbitrary variables, possibly allowing execution of arbitrary code.

5

CVE-2005-0827

  • EPSS 0.48%
  • Veröffentlicht 02.05.2005 04:00:00
  • Zuletzt bearbeitet 03.04.2025 01:03:51

Viewcat.php in (1) RUNCMS 1.1A, (2) Ciamos 0.9.2 RC1, e-Xoops 1.05 Rev3, and possibly other products based on e-Xoops (exoops), allow remote attackers to obtain sensitive information via an invalid parameter to the convertorderbytrans function, which...

5

CVE-2005-1031

  • EPSS 0.48%
  • Veröffentlicht 02.05.2005 04:00:00
  • Zuletzt bearbeitet 03.04.2025 01:03:51

RUNCMS 1.1A, and possibly other products based on e-Xoops (exoops), when "Allow custom avatar upload" is enabled, does not properly verify uploaded files, which allows remote attackers to upload arbitrary files.