VYPR

Lanai CMS

by Redlinesoft

CVEs (2)

  • CVE-2007-5156Oct 1, 2007
    risk 0.04cvss epss 0.08

    Incomplete blacklist vulnerability in editor/filemanager/upload/php/upload.php in FCKeditor, as used in SiteX CMS 0.7.3.beta, La-Nai CMS, Syntax CMS, Cardinal Cms, and probably other products, allows remote attackers to upload and execute arbitrary PHP code via a file whose name…

  • CVE-2007-4210Aug 8, 2007
    risk 0.03cvss epss 0.03

    Multiple SQL injection vulnerabilities in module.php in LANAI (la-nai) CMS 1.2.14 allow remote attackers to execute arbitrary SQL commands via (1) the mid parameter in an faqviewgroup action in the FAQ Modules, (2) the cid parameter in the EZSHOPINGCART Modules, or (3) the gid…