RSS   Vulnerabilities for 'Pajax'   RSS

2006-04-13
 
CVE-2006-1789

CWE-Other
 

 
Directory traversal vulnerability in pajax_call_dispatcher.php in PAJAX 0.5.1 and earlier allows remote attackers to read arbitrary files via the $className variable.

 
 
CVE-2006-1551

CWE-Other
 

 
Eval injection vulnerability in pajax_call_dispatcher.php in PAJAX 0.5.1 and earlier allows remote attackers to execute arbitrary code via the (1) $method and (2) $args parameters.

 


Copyright 2024, cxsecurity.com

 

Back to Top