Zanfi Solutions » Zanfi Cms Lite : Security Vulnerabilities, CVEs, Published In 2008
SQL injection vulnerability in index.php in Jaw Portal and Zanfi CMS lite and allows remote attackers to execute arbitrary SQL commands via the page (pageid) parameter.
Max CVSS
7.5
EPSS Score
0.11%
Published
2008-09-22
Updated
2017-09-29
Multiple directory traversal vulnerabilities in index.php in Zanfi CMS lite 1.2 allow remote attackers to include and execute arbitrary local files via a .. (dot dot) in the (1) flag and (2) inc parameters.
Max CVSS
6.8
EPSS Score
1.35%
Published
2008-09-22
Updated
2017-09-29
2 vulnerabilities found