CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Thorcms: >> Thorcms >> 1.3.1 Security Vulnerabilities

CVE-2006-3269

PHP remote file inclusion vulnerability in includes/functions_cms.php in THoRCMS 1.3.1 allows remote attackers to execute arbitrary PHP code via the phpbb_root_path parameter.

CVSS Score

5.1

EPSS Score

0.164

Published

2006-06-28

CVE-2006-3270

SQL injection vulnerability in cms_admin.php in THoRCMS 1.3.1 allows remote attackers to execute arbitrary SQL commands via multiple unspecified parameters, such as the add_link_mid parameter. NOTE: the provenance of this information is unknown; portions of the details are obtained from third party information.

CVSS Score

7.5

EPSS Score

0.004

Published

2006-06-28

Page 1

Vulnerabilities

Vulnerable Software

Thorcms: >> Thorcms >> 1.3.1 Security Vulnerabilities

Products

Pricing

Contact Us