Vulnerabilities (CVE)

Filtered by vendor Openi-cms Group Subscribe
Filtered by product Openi-cms
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2007-0881 1 Openi-cms Group 1 Openi-cms 2024-02-04 6.8 MEDIUM N/A
PHP remote file inclusion vulnerability in the Seitenschutz plugin for OPENi-CMS 1.0 allows remote attackers to execute arbitrary PHP code via a URL in the (1) config[oi_dir] and possibly (2) config[openi_dir] parameters to open-admin/plugins/site_protection/index.php. NOTE: vector 2 might be the same as CVE-2006-4750.
CVE-2006-4750 1 Openi-cms Group 1 Openi-cms 2024-02-04 5.1 MEDIUM N/A
PHP remote file inclusion vulnerability in openi-admin/base/fileloader.php in OPENi-CMS 1.0.1, and possibly earlier, allows remote attackers to execute arbitrary PHP code via a URL in the config[openi_dir] parameter.