CMME

CVEs (2)

CVE	Vendor / Product	Sev	Risk	CVSS	EPSS	KEV	Published	Description
CVE-2008-3926	Content Management Made Easy CMME		0.03	—	0.02		Sep 4, 2008	Multiple directory traversal vulnerabilities in Content Management Made Easy (CMME) 1.12 allow remote attackers to (1) read arbitrary files via a .. (dot dot) in the env parameter in a weblog action to index.php, or (2) create arbitrary directories via a .. (dot dot) in the env…
CVE-2008-3925	Content Management Made Easy CMME		0.03	—	0.01		Sep 4, 2008	Cross-site request forgery (CSRF) vulnerability in admin.php in Content Management Made Easy (CMME) 1.12 allows remote attackers to trigger the logout of an administrative user via a logout action.

CVE-2008-3926Sep 4, 2008
Content Management Made Easy
CMME
risk 0.03cvss —epss 0.02
Multiple directory traversal vulnerabilities in Content Management Made Easy (CMME) 1.12 allow remote attackers to (1) read arbitrary files via a .. (dot dot) in the env parameter in a weblog action to index.php, or (2) create arbitrary directories via a .. (dot dot) in the env…
CVE-2008-3925Sep 4, 2008
Content Management Made Easy
CMME
risk 0.03cvss —epss 0.01
Cross-site request forgery (CSRF) vulnerability in admin.php in Content Management Made Easy (CMME) 1.12 allows remote attackers to trigger the logout of an administrative user via a logout action.