RSS   Vulnerabilities for 'Reviewpost php pro'   RSS

2006-09-19
 
CVE-2006-4864

CWE-Other
 

 
PHP remote file inclusion vulnerability in index.php in All Enthusiast ReviewPost 2.5 allows remote attackers to execute arbitrary PHP code via a URL in the RP_PATH parameter.

 
2004-12-31
 
CVE-2004-2175

 

 
Multiple SQL injection vulnerabilities in ReviewPost PHP Pro allow remote attackers to execute arbitrary SQL commands via the (1) product parameter to showproduct.php or (2) cat parameter to showcat.php.

 


Copyright 2024, cxsecurity.com

 

Back to Top