Show filters
2 Total Results
Displaying 1-2 of 2
Sort by:
Attacker Value
Unknown
CVE-2018-6881
Disclosure Date: February 12, 2018 (last updated November 26, 2024)
EmpireCMS 6.6 allows remote attackers to discover the full path via an array value for a parameter to admin/tool/ShowPic.php.
0
Attacker Value
Unknown
CVE-2012-5777
Disclosure Date: November 16, 2012 (last updated October 05, 2023)
Eval injection vulnerability in the ReplaceListVars function in the template parser in e/class/connect.php in EmpireCMS 6.6 allows user-assisted remote attackers to execute arbitrary PHP code via a crafted template.
0
