Vulnerabilities > Nitrotech > Nitrotech > 0.0.3a
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2008-12-05 | CVE-2008-5334 | Code Injection vulnerability in Nitrotech 0.0.3A PHP remote file inclusion vulnerability in includes/common.php in NitroTech 0.0.3a allows remote attackers to execute arbitrary PHP code via a URL in the root parameter. | 10.0 |
2008-12-05 | CVE-2008-5333 | SQL Injection vulnerability in Nitrotech 0.0.3A SQL injection vulnerability in members.php in NitroTech 0.0.3a allows remote attackers to execute arbitrary SQL commands via the id parameter. | 7.5 |
2007-01-17 | CVE-2006-6938 | Remote File Include vulnerability in Nitrotech 0.0.3A Directory traversal vulnerability in includes/common.php in NitroTech 0.0.3a, as distributed before 2006, allows remote attackers to include arbitrary files via ".." sequences in the root parameter. | 5.0 |