Vulnerabilities > Comscripts > WEB Server Creator WEB Portal > High

DATE	CVE	VULNERABILITY TITLE	RISK
2010-03-25	CVE-2010-1114	Code Injection vulnerability in Comscripts web Server Creator web Portal 0.1 Multiple PHP remote file inclusion vulnerabilities in Web Server Creator - Web Portal 0.1 allow remote attackers to execute arbitrary PHP code via a URL in the (1) pg parameter to index.php and the (2) path parameter to news/form.php. network low complexity comscripts CWE-94	7.5
2009-03-30	CVE-2008-6545	Code Injection vulnerability in Comscripts web Server Creator web Portal 0.1 PHP remote file inclusion vulnerability in news/include/createdb.php in Web Server Creator Web Portal 0.1 allows remote attackers to execute arbitrary PHP code via a URL in the langfile parameter. network low complexity comscripts CWE-94	7.5

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.