Vulnerabilities > Jinzora > Jinzora

DATE CVE VULNERABILITY TITLE RISK
2009-07-02 CVE-2009-2313 Path Traversal vulnerability in Jinzora
Directory traversal vulnerability in index.php in Jinzora Media Jukebox 2.8 and earlier allows remote attackers to include and execute arbitrary local files via a ..
network
low complexity
jinzora CWE-22
7.5
7.5
2007-03-06 CVE-2006-7131 Remote Security vulnerability in Jinzora 2.6
PHP remote file inclusion vulnerability in extras/mt.php in Jinzora 2.6 allows remote attackers to execute arbitrary PHP code via the web_root parameter.
network
low complexity
jinzora
critical
 10.0
10
2007-03-06 CVE-2006-7130 Code Injection vulnerability in Jinzora
PHP remote file inclusion vulnerability in backend/primitives/cache/media.php in Jinzora 2.1 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the include_path parameter, a different vector than CVE-2006-6770.
network
low complexity
jinzora CWE-94
7.5
7.5
2006-12-27 CVE-2006-6770 Remote File Include vulnerability in Jinzora 2.0.1
Multiple PHP remote file inclusion vulnerabilities in Jinzora Media Jukebox 2.7 and earlier, when register_globals is enabled, allow remote attackers to execute arbitrary PHP code via a URL in the include_path parameter in (1) popup.php, (2) rss.php, (3) ajax_request.php, and (4) mediabroadcast.php.
network
jinzora
6.8
6.8
2005-07-13 CVE-2005-2249 Remote Security vulnerability in Jinzora 2.0.1
Multiple unknown vulnerabilities in Jinzora 2.0.1 have unknown impact and attack vectors, possibly involving a PHP file inclusion vulnerability.
network
low complexity
jinzora
critical
 10.0
10