RSS   Vulnerabilities for 'Dev!l'z clanportal'   RSS

2010-03-16
 
CVE-2010-0966

CWE-94
 

 
PHP remote file inclusion vulnerability in inc/config.php in deV!L`z Clanportal (DZCP) 1.5.2, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the basePath parameter.

 
2007-03-02
 
CVE-2007-1167

CWE-200
 

 
inc/filebrowser/browser.php in deV!L`z Clanportal (DZCP) 1.4.5 and earlier allows remote attackers to obtain MySQL data via the inc/mysql.php value of the file parameter.

 


Copyright 2024, cxsecurity.com

 

Back to Top