Vulnerabilities > Entertainmentscript
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2008-05-27 | CVE-2008-2459 | Path Traversal vulnerability in Entertainmentscript 1.4.0 Directory traversal vulnerability in page.php in EntertainmentScript 1.4.0 allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the page parameter. | 6.8 |
2008-05-21 | CVE-2008-2393 | SQL Injection vulnerability in Entertainmentscript 1.4.0 SQL injection vulnerability in play.php in EntertainmentScript 1.4.0 allows remote attackers to execute arbitrary SQL commands via the id parameter. | 7.5 |