Vulnerabilities > Built2Go
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2008-10-09 | CVE-2008-4497 | SQL Injection vulnerability in Built2Go Real Estate Listings 1.5 SQL injection vulnerability in event_detail.php in Built2Go Real Estate Listings 1.5 allows remote attackers to execute arbitrary SQL commands via the event_id parameter. | 7.5 |
| 2007-04-26 | CVE-2007-2286 | Remote File Include vulnerability in Built2Go PHP Link Portal 1.79 PHP remote file inclusion vulnerability in config.php in Built2Go PHP Link Portal 1.79 allows remote attackers to execute arbitrary PHP code via a URL in the full_path_to_db parameter. | 7.5 |
| 2007-03-03 | CVE-2007-1248 | Cross-Site Scripting vulnerability in Built2Go News Manager Blog 1.0 Multiple cross-site scripting (XSS) vulnerabilities in built2go News Manager Blog 1.0 allow remote attackers to inject arbitrary web script or HTML via the (1) cid, (2) uid, and (3) nid parameters to (a) news.php, and the nid parameter to (b) rating.php. | 4.3 |
| 2006-04-25 | CVE-2006-2008 | Remote File Include vulnerability in Built2go Movie Review Movie_CLS.PHP3 PHP remote file inclusion vulnerability in movie_cls.php in Built2Go PHP Movie Review 2B and earlier allows remote attackers to execute arbitrary PHP code via a URL in the full_path parameter. | 7.5 |