Vulnerabilities > Dotbr > Botbr
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2003-12-31 | CVE-2003-1405 | Improper Input Validation vulnerability in Dotbr Botbr 0.1 DotBr 0.1 allows remote attackers to execute arbitrary shell commands via the cmd parameter to (1) exec.php3 or (2) system.php3. | 7.5 |
2003-12-31 | CVE-2003-1404 | Information Exposure vulnerability in Dotbr Botbr 0.1 DotBr 0.1 stores config.inc with insufficient access control under the web document root, which allows remote attackers to obtain sensitive information such as SQL usernames and passwords. | 7.5 |
2003-12-31 | CVE-2003-1403 | Improper Input Validation vulnerability in Dotbr Botbr 0.1 foo.php3 in DotBr 0.1 allows remote attackers to obtain sensitive information via a direct request, which calls the phpinfo function. | 7.5 |