Aggregates CVE and security vulnerability intelligence across all runcms-related products, including CVSS, EPSS, publication dates, and vulnerability intelligence data.
Historical issues mainly involve vendor risk cross-site scripting, vendor risk csrf, and vendor risk path handling and related problems; some flaws may lead to vendor impact session compromise and vendor impact file overwrite.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2007-5535 | Unspecified vulnerability in newbb_plus in RunCms 1.5.2 has unknown impact and attack vectors. | [email protected] | 10.0 | 1.54% | 2007-10-17 | 2026-06-16 |
| CVE-2007-2539 | The show_files function in RunCms 1.5.2 and earlier allows remote attackers to obtain sensitive information (file existence and file metadata) via unspecified vectors. | [email protected] | 7.8 | 7.91% | 2007-05-08 | 2026-06-16 |
| CVE-2007-2538 | SQL injection vulnerability in class/debug/debug_show.php in RunCms 1.5.2 and earlier allows remote attackers to execute arbitrary SQL commands via the executed_queries array parameter. | [email protected] | 7.5 | 4.83% | 2007-05-08 | 2026-06-16 |
| CVE-2006-4667 | Multiple SQL injection vulnerabilities in RunCMS 1.4.1 allow remote attackers to execute arbitrary SQL commands via the (1) uid parameter in (a) class/sessions.class.php, and the (2) timezone_offset and (3) umode parameters in (b) class/xoopsuser.php. | [email protected] | 7.5 | 2.43% | 2006-09-08 | 2026-06-16 |
| CVE-2006-1793 | Directory traversal vulnerability in runCMS 1.2 and earlier allows remote attackers to read arbitrary files via the bbPath[path] parameter to (1) class.forumposts.php and (2) forumpollrenderer.php. NOTE: this issue is closely related to CVE-2006-0659. | [email protected] | 7.6 | 3.56% | 2006-04-17 | 2026-06-16 |
| CVE-2006-1216 | Cross-site scripting (XSS) vulnerability in bigshow.php in Runcms 1.x allows remote attackers to inject arbitrary web script or HTML via the id parameter. | [email protected] | 4.3 | 1.93% | 2006-03-13 | 2026-06-16 |
| CVE-2006-0875 | Cross-site scripting vulnerability in ratefile.php in RunCMS 1.3a5 allows remote attackers to inject arbitrary web script or HTML via the lid parameter. | [email protected] | 5.0 | 2.88% | 2006-02-24 | 2026-06-16 |
| CVE-2006-0721 | SQL injection vulnerability in pmlite.php in RunCMS 1.2 and 1.3a allows remote attackers to execute arbitrary SQL commands via the to_userid parameter. | [email protected] | 7.5 | 1.71% | 2006-02-16 | 2026-06-16 |
| CVE-2006-0659 | Multiple PHP remote file include vulnerabilities in RunCMS 1.2 and earlier, with register_globals and allow_url_fopen enabled, allow remote attackers to execute arbitrary code via the bbPath[path] parameter in (1) class.forumposts.php and (2) forumpollrenderer.php. | [email protected] | 6.8 | 4.00% | 2006-02-13 | 2026-06-16 |
| CVE-2005-2692 | Multiple SQL injection vulnerabilities in RunCMS 1.2 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) addquery and (2) subquery parameters to the newbb plus module, the forum parameter to (3) newtopic.php, (4) edit.php, or (5) reply.php in the newbb plus module, or (6) the msg_id parameter to print.php in the messages module. | [email protected] | 7.5 | 1.21% | 2005-08-24 | 2026-06-16 |
| CVE-2005-2691 | includes/common.php in RunCMS 1.2 and earlier calls the extract function with EXTR_OVERWRITE on HTTP POST variables, which allows remote attackers to overwrite arbitrary variables, possibly allowing execution of arbitrary code. | [email protected] | 7.5 | 2.32% | 2005-08-24 | 2026-06-16 |
| CVE-2005-1031 | RUNCMS 1.1A, and possibly other products based on e-Xoops (exoops), when "Allow custom avatar upload" is enabled, does not properly verify uploaded files, which allows remote attackers to upload arbitrary files. | [email protected] | 5.0 | 1.35% | 2005-05-02 | 2026-06-16 |
| CVE-2005-0828 | highlight.php in (1) RUNCMS 1.1A, (2) CIAMOS 0.9.2 RC1, (3) e-Xoops 1.05 Rev3, and possibly other products based on e-Xoops (exoops), allows remote attackers to read arbitrary PHP files by specifying the pathname in the file parameter, as demonstrated by reading database configuration information from mainfile.php. | [email protected] | 5.0 | 9.18% | 2005-05-02 | 2026-06-16 |
| CVE-2005-0827 | Viewcat.php in (1) RUNCMS 1.1A, (2) Ciamos 0.9.2 RC1, e-Xoops 1.05 Rev3, and possibly other products based on e-Xoops (exoops), allow remote attackers to obtain sensitive information via an invalid parameter to the convertorderbytrans function, which reveals the path in a PHP error message. | [email protected] | 5.0 | 1.39% | 2005-05-02 | 2026-06-16 |