Vendor

Customerparadigm

Products

CVEs

Across products

Status

Private

Products

CVE	Vendor / Product	Risk	CVSS	EPSS	Published	Description
CVE-2010-2685	Customerparadigm Pagedirector CMS	0.03	—	0.02	Jul 12, 2010	siteadmin/adduser.php in Customer Paradigm PageDirector CMS does not properly restrict access, which allows remote attackers to bypass intended restrictions and add administrative users via a direct request.
CVE-2010-2684	Customerparadigm Pagedirector CMS	0.03	—	0.01	Jul 12, 2010	SQL injection vulnerability in index.php in Customer Paradigm PageDirector CMS allows remote attackers to execute arbitrary SQL commands via the id parameter.
CVE-2010-2683	Customerparadigm Pagedirector CMS	0.03	—	0.00	Jul 12, 2010	SQL injection vulnerability in result.php in Customer Paradigm PageDirector CMS allows remote attackers to execute arbitrary SQL commands via the sub_catid parameter.

CVE-2010-2685Jul 12, 2010
Customerparadigm
Pagedirector CMS
risk 0.03cvss —epss 0.02
siteadmin/adduser.php in Customer Paradigm PageDirector CMS does not properly restrict access, which allows remote attackers to bypass intended restrictions and add administrative users via a direct request.
CVE-2010-2684Jul 12, 2010
Customerparadigm
Pagedirector CMS
risk 0.03cvss —epss 0.01
SQL injection vulnerability in index.php in Customer Paradigm PageDirector CMS allows remote attackers to execute arbitrary SQL commands via the id parameter.
CVE-2010-2683Jul 12, 2010
Customerparadigm
Pagedirector CMS
risk 0.03cvss —epss 0.00
SQL injection vulnerability in result.php in Customer Paradigm PageDirector CMS allows remote attackers to execute arbitrary SQL commands via the sub_catid parameter.