Pecio-cms : Security Vulnerabilities, CVEs,
Multiple PHP remote file inclusion vulnerabilities in Pecio CMS 2.0.5 allow remote attackers to execute arbitrary PHP code via a URL in the template parameter to (1) post.php, (2) article.php, (3) blog.php, or (4) home.php in pec_templates/nova-blue/.
Max CVSS
7.5
EPSS Score
0.81%
Published
2010-09-03
Updated
2017-08-17
Directory traversal vulnerability in index.php in Pecio CMS 1.1.5 allows remote attackers to read arbitrary files via a .. (dot dot) in the language parameter.
Max CVSS
5.0
EPSS Score
0.82%
Published
2009-05-04
Updated
2017-09-29
2 vulnerabilities found