) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.
Search Results (Refine Search)
- CPE Product Version: cpe:/a:cafuego:simple_document_management_system:1.1.4
| Vuln ID | Summary | CVSS Severity |
|---|---|---|
| CVE-2010-4986 |
SQL injection vulnerability in detail.php in Simple Document Management System (SDMS) allows remote attackers to execute arbitrary SQL commands via the doc_id parameter. Published: November 01, 2011; 6:55:05 PM -0400 |
V3.x:(not available) V2.0: 7.5 HIGH |
| CVE-2008-6236 |
SQL injection vulnerability in login.php in Simple Document Management System (SDMS) 1.1.5 and 1.1.4, and possibly earlier, allows remote attackers to execute arbitrary SQL commands via the login parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information. Published: February 21, 2009; 6:30:00 PM -0500 |
V3.x:(not available) V2.0: 7.5 HIGH |
| CVE-2008-6220 |
SQL injection vulnerability in login.php in Simple Document Management System (SDMS) 1.1.5 and 1.1.4, and possibly earlier, allows remote attackers to execute arbitrary SQL commands via the pass parameter. Published: February 20, 2009; 4:30:00 PM -0500 |
V3.x:(not available) V2.0: 7.5 HIGH |
| CVE-2005-3877 |
Multiple SQL injection vulnerabilities in Simple Document Management System (SDMS) 2.0-CVS and earlier allow remote attackers to execute arbitrary SQL commands via the (1) folder_id parameter in list.php and (2) mid parameter in a view action to messages.php. Published: November 29, 2005; 6:03:00 AM -0500 |
V3.x:(not available) V2.0: 7.5 HIGH |