RSS   Vulnerabilities for 'Discloser'   RSS

2010-03-18
 
CVE-2009-4719

CWE-89
 

 
SQL injection vulnerability in index.php in Discloser 0.0.4 rc2 allows remote attackers to execute arbitrary SQL commands via the more parameter.

 
2006-08-17
 
CVE-2006-4207

 

 
Multiple PHP remote file inclusion vulnerabilities in Bob Jewell Discloser 0.0.4 and earlier allow remote attackers to execute arbitrary PHP code via a URL in the fileloc parameter to (1) content/content.php or (2) /inc/indexhead.php.

 


Copyright 2024, cxsecurity.com

 

Back to Top