Vulnerabilities > Audiosharescript
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2015-06-23 | CVE-2015-4726 | Code Injection vulnerability in Audiosharescript Audioshare 2.0.2 PHP remote file inclusion vulnerability in ajax/myajaxphp.php in AudioShare 2.0.2 allows remote attackers to execute arbitrary PHP code via a URL in the config['basedir'] parameter. | 7.5 |
2015-06-23 | CVE-2015-4725 | Cross-site Scripting vulnerability in Audiosharescript Audioshare 2.0.2 Cross-site scripting (XSS) vulnerability in forgot.php in AudioShare 2.0.2 allows remote attackers to inject arbitrary web script or HTML via the email parameter. | 4.3 |