Vulnerabilities > PHP WEB Scripts
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2008-03-05 | CVE-2008-1162 | SQL Injection vulnerability in PHP web Scripts Dynamic Photo Gallery 1.0.2 SQL injection vulnerability in album.php in PHP WEB SCRIPT Dynamic Photo Gallery 1.02 allows remote attackers to execute arbitrary SQL commands via the albumID parameter. | 7.5 |
2007-01-11 | CVE-2007-0178 | Remote File Include vulnerability in PHP web Scripts Easy Banner PRO 2.8 PHP remote file inclusion vulnerability in info.php in Easy Banner Pro 2.8 allows remote attackers to execute arbitrary PHP code via a URL in the s[phppath] parameter. | 7.5 |
2006-10-05 | CVE-2006-5166 | Remote File Include vulnerability in PHP Web Scripts Easy Banner Functions.PHP PHP remote file inclusion vulnerability in functions.php in PHP Web Scripts Easy Banner Free allows remote attackers to execute arbitrary PHP code via a URL in the s[phppath] parameter. | 7.5 |
2006-06-23 | CVE-2006-3192 | Remote File Include vulnerability in PHP web Scripts AD Manager PRO 2.6 PHP remote file inclusion vulnerability in Ad Manager Pro 2.6 allows remote attackers to execute arbitrary PHP code via a URL in the (1) ipath parameter in common.php and (2) unspecified vectors in ad.php. | 7.5 |
2005-12-14 | CVE-2005-4233 | SQL Injection vulnerability in PHP Web Scripts Ad Manager Pro Advertiser_statistic.PHP SQL injection vulnerability in advertiser_statistic.php in Ad Manager Pro 2.0 and earlier allows remote attackers to execute arbitrary SQL commands via the ad_number parameter. | 7.5 |
2005-12-14 | CVE-2005-4231 | Input Validation vulnerability in Link Up Gold Cross-site scripting (XSS) vulnerability in Link Up Gold 2.5 and earlier allows remote attackers to inject arbitrary web script or HTML via (1) link parameter to tell_friend.php, (2) phrase[] parameter to search.php in a search_links_advanced action, and the (3) direction or (4) sort parameter to articles.php. network php-web-scripts | 4.3 |
2005-12-14 | CVE-2005-4230 | Input Validation vulnerability in Link Up Gold SQL injection vulnerability in poll.php in Link Up Gold 2.5 and earlier allows remote attackers to execute arbitrary SQL commands via the number parameter. | 7.5 |