Vulnerabilities > Livezilla > High

DATE CVE VULNERABILITY TITLE RISK
2020-01-13 CVE-2013-6225 Path Traversal vulnerability in Livezilla 5.0.1.4
LiveZilla 5.0.1.4 has a Remote Code Execution vulnerability
network
low complexity
livezilla CWE-22
7.5
7.5
2019-06-25 CVE-2019-12960 SQL Injection vulnerability in Livezilla
LiveZilla Server before 8.0.1.1 is vulnerable to SQL Injection in functions.internal.build.inc.php via the parameter p_dt_s_d.
network
low complexity
livezilla CWE-89
7.5
7.5
2019-06-24 CVE-2019-12940 Allocation of Resources Without Limits or Throttling vulnerability in Livezilla
LiveZilla Server before 8.0.1.1 is vulnerable to Denial Of Service (memory consumption) in knowledgebase.php via a large integer value of the depth parameter.
network
livezilla CWE-770
7.1
7.1
2019-06-24 CVE-2019-12939 SQL Injection vulnerability in Livezilla
LiveZilla Server before 8.0.1.1 is vulnerable to SQL Injection in server.php via the p_ext_rse parameter.
network
low complexity
livezilla CWE-89
7.5
7.5
2014-05-05 CVE-2013-7034 Code Injection vulnerability in Livezilla
The setCookieValue function in _lib/functions.global.inc.php in LiveZilla before 5.1.2.1 allows remote attackers to execute arbitrary PHP code via a serialized PHP object in a cookie.
network
low complexity
livezilla CWE-94
7.5
7.5