Vulnerabilities > Exhibit Engine

DATE	CVE	VULNERABILITY TITLE	RISK
2006-10-16	CVE-2006-5292	Remote File Include vulnerability in Exhibit Engine Exhibit Engine 1.22/1.5Rc4 PHP remote file inclusion vulnerability in photo_comment.php in Exhibit Engine 1.5 RC 4 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the toroot parameter. network low complexity exhibit-engine	7.5
2005-06-02	CVE-2005-1875	SQL Injection vulnerability in Exhibit Engine List.php Multiple SQL injection vulnerabilities in list.php in Exhibit Engine (EE) 1.22 allow remote attackers to execute arbitrary SQL commands via the (1) search_row, (2) sort_row, (3) order or (4) perpage parameter. network low complexity exhibit-engine	7.5

Vulnerabilities > Exhibit Engine {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Exhibit Engine"}]}