Summary
WebMaid CMS is prone to multiple remote and local file-include vulnerabilities because it fails to sufficiently sanitize user- supplied input.
An attacker may leverage these issues to execute arbitrary server-side script code that resides on an affected computer or in a remote location with the privileges of the webserver process. This may facilitate unauthorized access.
WebMaid CMS 0.2-6 Beta is vulnerable
other versions may also
be affected.
References
Updated on 2015-03-25
Severity
Classification
-
CVE CVE-2010-1266 -
CVSS Base Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P
Related Vulnerabilities
- Apache Struts2 Showcase Skill Name Remote Code Execution Vulnerability
- ActivePerl perlIS.dll Buffer Overflow
- Apache Tomcat/JBoss EJBInvokerServlet / JMXInvokerServlet (RMI over HTTP) Marshalled Object Remote Code Execution
- ATutor password reminder SQL injection
- Advanced Guestbook Index.PHP SQL Injection Vulnerability