Produkt Discloser (...) - CVEMAP.ORG

Podatności dla 'Discloser'

2010-03-18

CVE-2009-4719

CWE-89

SQL injection vulnerability in index.php in Discloser 0.0.4 rc2 allows remote attackers to execute arbitrary SQL commands via the more parameter.

2006-08-17

CVE-2006-4207

Multiple PHP remote file inclusion vulnerabilities in Bob Jewell Discloser 0.0.4 and earlier allow remote attackers to execute arbitrary PHP code via a URL in the fileloc parameter to (1) content/content.php or (2) /inc/indexhead.php.

Copyright 2024, cxsecurity.com