Ermenegildo Fiorito Irmin Cms vulnerabilities
2 known vulnerabilities affecting ermenegildo_fiorito/irmin_cms.
Total CVEs
2
CISA KEV
0
Public exploits
2
Exploited in wild
0
Severity breakdown
MEDIUM2
Vulnerabilities
Page 1 of 1
CVE-2008-7254P3MEDIUMCVSS 6.8PoCv0.5v0.62010-04-07
CVE-2008-7254 [MEDIUM] CWE-22 CVE-2008-7254: Directory traversal vulnerability in includes/template-loader.php in Irmin CMS (formerly Pepsi CMS)
Directory traversal vulnerability in includes/template-loader.php in Irmin CMS (formerly Pepsi CMS) 0.5 and 0.6 BETA2, when register_globals is enabled, allows remote attackers to include and execute arbitrary files via a .. (dot dot) in the _Root_Path parameter. NOTE: some of these details are obtained from third party information.
nvd
CVE-2010-1309P4MEDIUMCVSS 5.0PoCv0.62010-04-08
CVE-2010-1309 [MEDIUM] CWE-22 CVE-2010-1309: Directory traversal vulnerability in Irmin CMS (formerly Pepsi CMS) 0.6 BETA2 allows remote attacker
Directory traversal vulnerability in Irmin CMS (formerly Pepsi CMS) 0.6 BETA2 allows remote attackers to read arbitrary files via a .. (dot dot) in the w parameter to index.php.
nvd