RSS   Vulnerabilities for 'Phpgreetcards'   RSS

2009-07-07
 
CVE-2008-6849

 

 
Unrestricted file upload vulnerability in index.php in phpGreetCards 3.7 allows remote attackers to execute arbitrary PHP code by uploading a file with an executable extension, then accessing it via a via a link that is listed by userfiles/number_shell.php.

 
 
CVE-2008-6848

 

 
Cross-site scripting (XSS) vulnerability in index.php in phpGreetCards 3.7 allows remote attackers to inject arbitrary web script or HTML via the category parameter in a select action.

 

 >>> Vendor: W2B 8 Products
Phpforumpro
Online banking
Dating club
Phphotresources
Phpdatingclub
Phpgreetcards
Phpemployment
Phpadboard


Copyright 2024, cxsecurity.com

 

Back to Top