RSS   Vulnerabilities for 'Audioshare'   RSS

2015-06-23
 
CVE-2015-4726

 

 
PHP remote file inclusion vulnerability in ajax/myajaxphp.php in AudioShare 2.0.2 allows remote attackers to execute arbitrary PHP code via a URL in the config['basedir'] parameter.

 
 
CVE-2015-4725

 

 
Cross-site scripting (XSS) vulnerability in forgot.php in AudioShare 2.0.2 allows remote attackers to inject arbitrary web script or HTML via the email parameter.

 


Copyright 2017, cxsecurity.com