Vulnerabilities > Lbstone
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2008-08-21 | CVE-2008-3748 | SQL Injection vulnerability in Lbstone Active PHP Bookmarks and APB SQL injection vulnerability in view_group.php in Active PHP Bookmarks (APB) 1.1.02 and 1.2.06 allows remote attackers to execute arbitrary SQL commands via the id parameter. | 7.5 |
2007-03-23 | CVE-2007-1621 | Remote File Include vulnerability in Active PHP Bookmarks Head.PHP PHP remote file inclusion vulnerability in templates/head.php in Active PHP Bookmark Notes (APB) 0.2.5 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the APB_SETTINGS[template_path] parameter. | 10.0 |