Vulnerabilities > Phpblock
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2008-11-24 | CVE-2008-5210 | Code Injection vulnerability in PHPblock A8.5 Multiple PHP remote file inclusion vulnerabilities in PhpBlock A8.5 allow remote attackers to execute arbitrary PHP code via a URL in the PATH_TO_CODE parameter to (1) script/init/createallimagecache.php, (2) allincludefortick.php and (3) test.php in script/tick/, and (4) modules/dungeon/tick/allincludefortick.php, different vectors than CVE-2008-1776. | 9.3 |
2008-04-14 | CVE-2008-1776 | Code Injection vulnerability in PHPblock A8.4 PHP remote file inclusion vulnerability in modules/basicfog/basicfogfactory.class.php in PhpBlock A8.4 allows remote attackers to execute arbitrary PHP code via a URL in the PATH_TO_CODE parameter. | 6.8 |