Vulnerabilities > Phpbluedragon
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2007-01-29 | CVE-2006-6958 | Code Injection vulnerability in PHPbluedragon CMS 2.9.1 Multiple PHP remote file inclusion vulnerabilities in phpBlueDragon 2.9.1 allow remote attackers to execute arbitrary PHP code via a URL in the vsDragonRootPath parameter to (1) team_admin.php, (2) rss_admin.php, (3) manual_admin.php, and (4) forum_admin.php in includes/root_modules/, a different set of vectors than CVE-2006-3076. | 7.5 |
2006-06-19 | CVE-2006-3076 | Remote File Include vulnerability in PHPbluedragon CMS 2.9.1 PHP remote file inclusion vulnerability in software_upload/public_includes/pub_templates/vphptree/template.php in PhpBlueDragon CMS 2.9.1 allows remote attackers to execute arbitrary PHP code via a URL in the vsDragonRootPath parameter. | 6.4 |