CVSS: 6.1EPSS: 8%CPEs: 6EXPL: 4CVE-2006-1216 – RunCMS 1.x - 'Bigshow.php' Cross-Site Scripting
https://notcve.org/view.php?id=CVE-2006-1216
14 Mar 2006 — Cross-site scripting (XSS) vulnerability in bigshow.php in Runcms 1.x allows remote attackers to inject arbitrary web script or HTML via the id parameter. • https://www.exploit-db.com/exploits/27360 •
CVSS: 6.1EPSS: 5%CPEs: 6EXPL: 4CVE-2006-0875 – RunCMS 1.x - 'Ratefile.php' Cross-Site Scripting
https://notcve.org/view.php?id=CVE-2006-0875
24 Feb 2006 — Cross-site scripting vulnerability in ratefile.php in RunCMS 1.3a5 allows remote attackers to inject arbitrary web script or HTML via the lid parameter. • https://www.exploit-db.com/exploits/27256 •
CVSS: 9.8EPSS: 1%CPEs: 3EXPL: 3CVE-2006-0721 – RunCMS 1.2/1.3 - 'PMLite.php' SQL Injection
https://notcve.org/view.php?id=CVE-2006-0721
16 Feb 2006 — SQL injection vulnerability in pmlite.php in RunCMS 1.2 and 1.3a allows remote attackers to execute arbitrary SQL commands via the to_userid parameter. Vulnerabilidad de inyección de SQL en pmlite.php en RunCMS 1.2 y 1.3a permite a atacantes remotos ejecutar órdenes SQL de su elección mediante el parámetro "to_userid". • https://www.exploit-db.com/exploits/27226 •
CVSS: 9.8EPSS: 5%CPEs: 3EXPL: 4CVE-2006-0659 – RunCMS 1.2 - 'class.forumposts.php' Remote File Inclusion
https://notcve.org/view.php?id=CVE-2006-0659
13 Feb 2006 — Multiple PHP remote file include vulnerabilities in RunCMS 1.2 and earlier, with register_globals and allow_url_fopen enabled, allow remote attackers to execute arbitrary code via the bbPath[path] parameter in (1) class.forumposts.php and (2) forumpollrenderer.php. • https://www.exploit-db.com/exploits/1485 • CWE-94: Improper Control of Generation of Code ('Code Injection') •
CVSS: 9.8EPSS: 1%CPEs: 3EXPL: 0CVE-2005-2691
https://notcve.org/view.php?id=CVE-2005-2691
24 Aug 2005 — includes/common.php in RunCMS 1.2 and earlier calls the extract function with EXTR_OVERWRITE on HTTP POST variables, which allows remote attackers to overwrite arbitrary variables, possibly allowing execution of arbitrary code. • http://secunia.com/advisories/16514 •
CVSS: 9.8EPSS: 0%CPEs: 3EXPL: 1CVE-2005-2692
https://notcve.org/view.php?id=CVE-2005-2692
24 Aug 2005 — Multiple SQL injection vulnerabilities in RunCMS 1.2 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) addquery and (2) subquery parameters to the newbb plus module, the forum parameter to (3) newtopic.php, (4) edit.php, or (5) reply.php in the newbb plus module, or (6) the msg_id parameter to print.php in the messages module. • http://secunia.com/advisories/16514 •
CVSS: 9.1EPSS: 0%CPEs: 3EXPL: 0CVE-2005-1031
https://notcve.org/view.php?id=CVE-2005-1031
09 Apr 2005 — RUNCMS 1.1A, and possibly other products based on e-Xoops (exoops), when "Allow custom avatar upload" is enabled, does not properly verify uploaded files, which allows remote attackers to upload arbitrary files. • http://marc.info/?l=bugtraq&m=111280711228450&w=2 •
CVSS: 5.3EPSS: 0%CPEs: 3EXPL: 0CVE-2005-0827
https://notcve.org/view.php?id=CVE-2005-0827
22 Mar 2005 — Viewcat.php in (1) RUNCMS 1.1A, (2) Ciamos 0.9.2 RC1, e-Xoops 1.05 Rev3, and possibly other products based on e-Xoops (exoops), allow remote attackers to obtain sensitive information via an invalid parameter to the convertorderbytrans function, which reveals the path in a PHP error message. • http://marc.info/?l=bugtraq&m=111117182417422&w=2 •
CVSS: 7.5EPSS: 5%CPEs: 3EXPL: 3CVE-2005-0828 – RunCMS 1.1 - Database Configuration Information Disclosure
https://notcve.org/view.php?id=CVE-2005-0828
22 Mar 2005 — highlight.php in (1) RUNCMS 1.1A, (2) CIAMOS 0.9.2 RC1, (3) e-Xoops 1.05 Rev3, and possibly other products based on e-Xoops (exoops), allows remote attackers to read arbitrary PHP files by specifying the pathname in the file parameter, as demonstrated by reading database configuration information from mainfile.php. • https://www.exploit-db.com/exploits/25237 •