Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
sapid cms vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2005-4006
SAPID CMS prior to 1.2.3.03 allows remote malicious users to bypass authentication via direct requests to the usr/system files (1) insert_file.php, (2) insert_image.php, (3) insert_link.php, (4) insert_qcfile.php, and (5) edit.php.
Redgraphic Sapid Cms 1.2.3
Redgraphic Sapid Cms
10
CVSSv2
CVE-2005-4007
Multiple unspecified vulnerabilities in SAPID CMS prior to 1.2.3.03, related to newly registered users and possibly authorization checks, have unknown impact and attack vectors involving (1) mvc/controller/user_request_analysis.inc.php and (2) usr/xml/ddc/authorization.xml.
Redgraphic Sapid Cms 1.2.3
Redgraphic Sapid Cms
7.5
CVSSv2
CVE-2012-5293
Multiple PHP remote file inclusion vulnerabilities in SAPID CMS 1.2.3 Stable allow remote malicious users to execute arbitrary PHP code via a URL in the (1) GLOBALS[root_path] parameter to usr/extensions/get_tree.inc.php or (2) root_path parameter to usr/extensions/get_infochanne...
Redgraphic Sapid Cms 1.2.3
1 EDB exploit
7.5
CVSSv2
CVE-2006-4026
PHP remote file inclusion vulnerability in SAPID CMS 123 rc3 allows remote malicious users to execute arbitrary PHP code via a URL in the (1) root_path parameter in usr/extensions/get_infochannel.inc.php and the (2) GLOBALS["root_path"] parameter in usr/extensions/get_t...
Redgraphic Sapid Cms 1.2.3
1 EDB exploit
6.8
CVSSv2
CVE-2007-5056
Eval injection vulnerability in adodb-perf-module.inc.php in ADOdb Lite 1.42 and previous versions, as used in products including CMS Made Simple, SAPID CMF, Journalness, PacerCMS, and Open-Realty, allows remote malicious users to execute arbitrary code via PHP sequences in the l...
Adodb Lite Adodb Lite
Pacercms Pacercms
Sapid Sapid Cmf
Cmsmadesimple Cms Made Simple
Journalness Journalness
Open-realty Open-realty
5 EDB exploits
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-38028
CVE-2024-32406
CVE-2024-25624
IMAP
CVE-2024-2310
CVE-2024-0874
CVE-2024-20359
XXE
remote code execution
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started