Dustincowell Free Simple Cms vulnerabilities
2 known vulnerabilities affecting dustincowell/free_simple_cms.
Total CVEs
2
CISA KEV
0
Public exploits
2
Exploited in wild
0
Severity breakdown
HIGH2
Vulnerabilities
Page 1 of 1
CVE-2010-3307P3HIGHCVSS 7.5PoCv1.02010-10-05
CVE-2010-3307 [HIGH] CWE-94 CVE-2010-3307: Multiple PHP remote file inclusion vulnerabilities in themes/default/index.php in Free Simple CMS 1.
Multiple PHP remote file inclusion vulnerabilities in themes/default/index.php in Free Simple CMS 1.0 and earlier allow remote attackers to execute arbitrary PHP code via a URL in the (1) body, (2) footer, (3) header, (4) menu_left, or (5) menu_right parameter.
nvd
CVE-2010-3742P3HIGHCVSS 7.5PoCv1.02010-10-05
CVE-2010-3742 [HIGH] CVE-2010-3742: Multiple PHP remote file inclusion vulnerabilities in themes/default/index.php in Free Simple CMS 1.
Multiple PHP remote file inclusion vulnerabilities in themes/default/index.php in Free Simple CMS 1.0 allow remote attackers to execute arbitrary PHP code via a URL in the (1) meta or (2) phpincdir parameter, a different issue than CVE-2010-3307.
nvd