Vulnerabilities > Nivisec
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2006-12-01 | CVE-2006-6216 | SQL Injection vulnerability in Nivisec Hacks List HACK_ID SQL injection vulnerability in admin_hacks_list.php in the Nivisec Hacks List 1.21 and earlier phpBB module allows remote attackers to execute arbitrary SQL commands via the hack_id parameter. | 7.5 |
2006-10-10 | CVE-2006-5223 | Remote File Include vulnerability in Nivisec User Viewed Posts Tracker 1.0 PHP remote file inclusion vulnerability in includes/functions_user_viewed_posts.php in the Nivisec User Viewed Posts Tracker module 1.0 and earlier for phpBB allows remote attackers to execute arbitrary PHP code via a URL in the phpbb_root_path parameter. | 7.5 |
2006-05-31 | CVE-2006-2693 | Information Disclosure vulnerability in Nivisec Hacks List Directory traversal vulnerability in admin/admin_hacks_list.php in Nivisec Hacks List 1.20 and earlier for phpBB, when register_globals is enabled, allows remote attackers to read arbitrary files via a ".." in the phpEx parameter. network nivisec | 7.1 |