VYPR

CMS

by Rianxosencabos CMS

CVEs (3)

  • CVE-2008-6014Jan 30, 2009
    risk 0.03cvss epss 0.01

    SQL injection vulnerability in scripts/links.php in Rianxosencabos CMS 0.9 allows remote attackers to execute arbitrary SQL commands via the id parameter.

  • CVE-2008-4245Sep 25, 2008
    risk 0.03cvss epss 0.02

    The Admin Control Panel in Rianxosencabos CMS 0.9 does not require administrator privileges, which allows remote authenticated users to (1) change a user's privileges, (2) delete a user account, or perform unspecified other administrative actions via vectors involving an admin…

  • CVE-2008-4244Sep 25, 2008
    risk 0.03cvss epss 0.03

    Rianxosencabos CMS 0.9 allows remote attackers to bypass authentication and gain administrative access by setting the usuario and pass cookies to 1.