Filtered by vendor Fipsasp
Subscriptions
Filtered by product Fipscms Light
Subscriptions
Total
2 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2008-3417 | 1 Fipsasp | 1 Fipscms Light | 2024-08-07 | N/A |
| SQL injection vulnerability in home/index.asp in fipsCMS light 2.1 and earlier allows remote attackers to execute arbitrary SQL commands via the r parameter, a different vector than CVE-2006-6115 and CVE-2007-2561. | ||||
| CVE-2009-2022 | 1 Fipsasp | 1 Fipscms Light | 2024-08-07 | N/A |
| fipsCMS Light 2.1 stores sensitive information under the web root with insufficient access control, which allows remote attackers to download the database file and obtain sensitive information via a direct request for _fipsdb/db.mdb. | ||||
Page 1 of 1.