National Vulnerability Database

National Vulnerability Database

National Vulnerability
Database

Search Results (Refine Search)

Search Parameters:
  • Contains Software Flaws (CVE)
  • CPE Product Version: cpe:/a:1024cms:1024_cms:2.1.1
There are 1 matching records.
Vuln ID Summary CVSS Severity
CVE-2010-1093

SQL injection vulnerability in rss.php in 1024 CMS 2.1.1, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the id parameter in a vp action.

Published: March 24, 2010; 06:44:14 PM -04:00
    V2: 6.8 MEDIUM