Vulnerabilities > Papoo > Papoo > 3.6

DATE CVE VULNERABILITY TITLE RISK
2009-02-25 CVE-2009-0735 Path Traversal vulnerability in Papoo 3.6
Directory traversal vulnerability in lib/classes/message_class.php in Papoo CMS 3.6, when register_globals is enabled and magic_quotes_gpc is disabled, allows remote attackers to read and possibly execute arbitrary files via a ..
network
high complexity
papoo CWE-22
5.1
5.1
2008-08-20 CVE-2008-3724 SQL Injection vulnerability in Papoo
SQL injection vulnerability in index.php in Papoo before 3.7.2 allows remote attackers to execute arbitrary SQL commands via the suchanzahl parameter.
network
low complexity
papoo CWE-89
7.5
7.5