Vulnerabilities > GNU > Phpbook > 1.2

DATE	CVE	VULNERABILITY TITLE	RISK
2006-01-04	CVE-2006-0075	Unspecified vulnerability in GNU PHPbook Direct static code injection vulnerability in phpBook 1.3.2 and earlier allows remote attackers to execute arbitrary PHP code via the e-mail field (mail variable) in a new message, which is written to a PHP file. network low complexity gnu	7.5

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.