Customerparadigm : Security Vulnerabilities, CVEs,
siteadmin/adduser.php in Customer Paradigm PageDirector CMS does not properly restrict access, which allows remote attackers to bypass intended restrictions and add administrative users via a direct request.
Max CVSS
7.5
EPSS Score
1.38%
Published
2010-07-12
Updated
2016-10-07
SQL injection vulnerability in index.php in Customer Paradigm PageDirector CMS allows remote attackers to execute arbitrary SQL commands via the id parameter.
Max CVSS
7.5
EPSS Score
0.63%
Published
2010-07-12
Updated
2017-08-17
SQL injection vulnerability in result.php in Customer Paradigm PageDirector CMS allows remote attackers to execute arbitrary SQL commands via the sub_catid parameter.
Max CVSS
7.5
EPSS Score
0.20%
Published
2010-07-12
Updated
2010-07-12
3 vulnerabilities found