Treble Designs 1024 Cms vulnerabilities
2 known vulnerabilities affecting treble_designs/1024_cms.
Total CVEs
2
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
HIGH1MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2007-2507P3HIGHCVSS 7.8PoCv0.72007-05-04
CVE-2007-2507 [HIGH] CVE-2007-2507: Directory traversal vulnerability in includes/download.php in Treble Designs 1024 CMS 0.7 allows rem
Directory traversal vulnerability in includes/download.php in Treble Designs 1024 CMS 0.7 allows remote attackers to read arbitrary files via a .. (dot dot) in the item parameter.
nvd
CVE-2007-5575P4MEDIUMCVSS 4.3v1.2.52007-10-18
CVE-2007-5575 [MEDIUM] CWE-352 CVE-2007-5575: Cross-site request forgery (CSRF) vulnerability in 1024 CMS 1.2.5 allows remote attackers to perform
Cross-site request forgery (CSRF) vulnerability in 1024 CMS 1.2.5 allows remote attackers to perform some actions as administrators, as demonstrated by (1) an unspecified action that creates a file containing PHP code and (2) unspecified use of the forum component. NOTE: the provenance of this information is unknown; the details are obtained solely fr
nvd