RSS   Vulnerabilities for 'Al-caricatier'   RSS

2007-08-07
 
CVE-2007-4167

CWE-Other
 
 
PHP remote file inclusion vulnerability in cat_viewed.php in AL-Caricatier 2.5 allows remote attackers to execute arbitrary PHP code via a URL in the CatName parameter.

 
2006-03-31
 
CVE-2006-1556

CWE-Other
 
 
Multiple cross-site scripting (XSS) vulnerabilities in view_caricatier.php in AL-Caricatier 2.5 allow remote attackers to inject arbitrary web script or HTML via the (1) CatName, (2) CaricatierID, or (3) CatID parameter.

 
2005-12-31
 
CVE-2005-4653

 
 
Unspecified vulnerability in ss.php in AL-Caricatier 2.5 and earlier allows remote attackers to bypass login authentication by requesting view_caricatier.php, and then requesting any file in the admin directory with a cookie_username=admin argument.

 

Copyright 2024, cxsecurity.com

 

Back to Top