cbcvebase.

Redgraphic Sapid Cms vulnerabilities

4 known vulnerabilities affecting redgraphic/sapid_cms.

Total CVEs
4
CISA KEV
0
Public exploits
2
Exploited in wild
0
Severity breakdown
CRITICAL1HIGH3

Vulnerabilities

Page 1 of 1
CVE-2012-5293P3HIGHCVSS 7.5PoCv1.2.32012-10-04
CVE-2012-5293 [HIGH] CWE-94 CVE-2012-5293: Multiple PHP remote file inclusion vulnerabilities in SAPID CMS 1.2.3 Stable allow remote attackers Multiple PHP remote file inclusion vulnerabilities in SAPID CMS 1.2.3 Stable allow remote attackers to execute arbitrary PHP code via a URL in the (1) GLOBALS[root_path] parameter to usr/extensions/get_tree.inc.php or (2) root_path parameter to usr/extensions/get_infochannel.inc.php.
nvd
CVE-2006-4026P3HIGHCVSS 7.5PoCv1.2.32006-08-09
CVE-2006-4026 [HIGH] CWE-94 CVE-2006-4026: PHP remote file inclusion vulnerability in SAPID CMS 123 rc3 allows remote attackers to execute arbi PHP remote file inclusion vulnerability in SAPID CMS 123 rc3 allows remote attackers to execute arbitrary PHP code via a URL in the (1) root_path parameter in usr/extensions/get_infochannel.inc.php and the (2) GLOBALS["root_path"] parameter in usr/extensions/get_tree.inc.php.
nvd
CVE-2005-4006P3HIGHCVSS 7.5≤ 1.2.3.02v1.2.32005-12-05
CVE-2005-4006 [HIGH] CWE-287 CVE-2005-4006: SAPID CMS before 1.2.3.03 allows remote attackers to bypass authentication via direct requests to th SAPID CMS before 1.2.3.03 allows remote attackers to bypass authentication via direct requests to the usr/system files (1) insert_file.php, (2) insert_image.php, (3) insert_link.php, (4) insert_qcfile.php, and (5) edit.php.
nvd
CVE-2005-4007P4CRITICALCVSS 10.0≤ 1.2.3.02v1.2.32005-12-05
CVE-2005-4007 [CRITICAL] CVE-2005-4007: Multiple unspecified vulnerabilities in SAPID CMS before 1.2.3.03, related to newly registered users Multiple unspecified vulnerabilities in SAPID CMS before 1.2.3.03, related to newly registered users and possibly authorization checks, have unknown impact and attack vectors involving (1) mvc/controller/user_request_analysis.inc.php and (2) usr/xml/ddc/authorization.xml.
nvd
Redgraphic Sapid Cms vulnerabilities | cvebase