VYPR

CMS

by Tilde CMS Project

CVEs (8)

  • CVE-2017-11324CriJul 24, 2017
    risk 0.64cvss 9.8epss 0.01

    An issue was discovered in Tilde CMS 1.0.1. Due to missing escaping of the backtick character, a SELECT query in class.SystemAction.php is vulnerable to SQL Injection. The vulnerability can be triggered via a POST request to /actionphp/action.input.php with the id parameter.

  • CVE-2017-11326HigJul 24, 2017
    risk 0.49cvss 7.5epss 0.01

    An issue was discovered in Tilde CMS 1.0.1. It is possible to bypass the implemented restrictions on arbitrary file upload via a filename.+php manipulation.

  • CVE-2017-11325HigJul 24, 2017
    risk 0.49cvss 7.5epss 0.01

    An issue was discovered in Tilde CMS 1.0.1. Arbitrary files can be read via a file=../ attack on actionphp/download.File.php.

  • CVE-2017-11327MedJul 24, 2017
    risk 0.42cvss 6.5epss 0.01

    An issue was discovered in Tilde CMS 1.0.1. It is possible to retrieve sensitive data by using direct references. A low-privileged user can load PHP resources such as admin/content.php and admin/content.php?method=ftp_upload.

  • CVE-2007-6159Nov 29, 2007
    risk 0.03cvss epss 0.01

    SQL injection vulnerability in index.php in Tilde CMS 4.x and earlier allows remote attackers to execute arbitrary SQL commands via the aarstal parameter in a yeardetail action, a different vector than CVE-2006-1500.

  • CVE-2007-6160Nov 29, 2007
    risk 0.03cvss epss 0.01

    Cross-site scripting (XSS) vulnerability in index.php in Tilde CMS 4.x and earlier allows remote attackers to inject arbitrary web script or HTML via the aarstal parameter in a yeardetail action.

  • CVE-2007-6161Nov 29, 2007
    risk 0.00cvss epss 0.01

    index.php in Tilde CMS 4.x and earlier allows remote attackers to obtain sensitive information via a certain search parameter value in a search action, which reveals the path.

  • CVE-2006-1500Mar 30, 2006
    risk 0.00cvss epss 0.01

    SQL injection vulnerability in index.php in Tilde CMS 3.0 allows remote attackers to execute arbitrary SQL commands via the id parameter.