Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
sapid cms vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2005-4006
SAPID CMS prior to 1.2.3.03 allows remote malicious users to bypass authentication via direct requests to the usr/system files (1) insert_file.php, (2) insert_image.php, (3) insert_link.php, (4) insert_qcfile.php, and (5) edit.php.
Redgraphic Sapid Cms 1.2.3
Redgraphic Sapid Cms
10
CVSSv2
CVE-2005-4007
Multiple unspecified vulnerabilities in SAPID CMS prior to 1.2.3.03, related to newly registered users and possibly authorization checks, have unknown impact and attack vectors involving (1) mvc/controller/user_request_analysis.inc.php and (2) usr/xml/ddc/authorization.xml.
Redgraphic Sapid Cms 1.2.3
Redgraphic Sapid Cms
7.5
CVSSv2
CVE-2006-4026
PHP remote file inclusion vulnerability in SAPID CMS 123 rc3 allows remote malicious users to execute arbitrary PHP code via a URL in the (1) root_path parameter in usr/extensions/get_infochannel.inc.php and the (2) GLOBALS["root_path"] parameter in usr/extensions/get_t...
Redgraphic Sapid Cms 1.2.3
1 EDB exploit
7.5
CVSSv2
CVE-2012-5293
Multiple PHP remote file inclusion vulnerabilities in SAPID CMS 1.2.3 Stable allow remote malicious users to execute arbitrary PHP code via a URL in the (1) GLOBALS[root_path] parameter to usr/extensions/get_tree.inc.php or (2) root_path parameter to usr/extensions/get_infochanne...
Redgraphic Sapid Cms 1.2.3
1 EDB exploit
6.8
CVSSv2
CVE-2007-5056
Eval injection vulnerability in adodb-perf-module.inc.php in ADOdb Lite 1.42 and previous versions, as used in products including CMS Made Simple, SAPID CMF, Journalness, PacerCMS, and Open-Realty, allows remote malicious users to execute arbitrary code via PHP sequences in the l...
Adodb Lite Adodb Lite
Pacercms Pacercms
Sapid Sapid Cmf
Cmsmadesimple Cms Made Simple
Journalness Journalness
Open-realty Open-realty
5 EDB exploits
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
XXE
CVE-2024-34490
SQL injection
CVE-2024-34488
CVE-2024-4507
CVE-2023-7028
CVE-2024-23187
TCP
CVE-2024-4439
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started