| Max CVSS | 7.5 | Min CVSS | 6.8 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2007-4905 | 7.5 |
Unrestricted file upload vulnerability in mod/contak.php in AuraCMS 2.1 allows remote attackers to upload and execute arbitrary PHP files via the image parameter, which places a file under files/.
|
29-09-2017 - 01:29 | 17-09-2007 - 16:17 | |
| CVE-2007-4886 | 6.8 |
Incomplete blacklist vulnerability in index.php in AuraCMS 1.x and probably 2.x allows remote attackers to execute arbitrary PHP code via a (1) UNC share pathname, or a (2) ftp, (3) ftps, or (4) ssh2.sftp URL, in the pilih parameter, for which PHP re
|
29-09-2017 - 01:29 | 14-09-2007 - 00:17 | |
| CVE-2007-4908 | 7.5 |
Directory traversal vulnerability in index.php in AuraCMS 2.1 and earlier allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the pilih parameter.
|
29-09-2017 - 01:29 | 17-09-2007 - 16:17 |