Vendor
Siteframe
Products
2
CVEs
3
Across products
25
Status
Private
Products
2- 18 CVEs
- 7 CVEs
Recent CVEs
3| CVE | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2009-2443 | 0.04 | — | 0.08 | Jul 13, 2009 | Siteframe 3.2.3, and other 3.2.x versions, allows remote attackers to obtain configuration information via a direct request to phpinfo.php, which calls the phpinfo function. | ||
| CVE-2008-3256 | 0.03 | — | 0.00 | Jul 22, 2008 | SQL injection vulnerability in folder.php in Siteframe CMS 3.2.3 and earlier, and Siteframe Beaumont 5.0.5 and earlier, allows remote attackers to execute arbitrary SQL commands via the id parameter. | ||
| CVE-2006-0783 | 0.03 | — | 0.06 | Feb 19, 2006 | Cross-site scripting (XSS) vulnerability in page.php in in Siteframe Beaumont, possibly 5.0.2 or 5.0.1a, allows remote attackers to inject arbitrary web script or HTML via the comment_text parameter to the user comment page (/edit/Comment). |