Vulnerabilities > Phpcounter
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2009-01-28 | CVE-2008-5989 | Path Traversal vulnerability in PHPcounter Directory traversal vulnerability in defs.php in PHPcounter 1.3.2 and earlier, when magic_quotes_gpc is disabled, allows remote attackers to include and execute arbitrary local files via a .. | 6.8 |
2008-10-22 | CVE-2008-4675 | SQL Injection vulnerability in PHPcounter SQL injection vulnerability in index.php in PHPcounter 1.3.2 and earlier allows remote attackers to execute arbitrary SQL commands via the name parameter. | 7.5 |
2005-07-18 | CVE-2005-2289 | Information Disclosure vulnerability in PHPcounter 7.2 PHPCounter 7.2 allows remote attackers to obtain sensitive information via a direct request to prelims.php, which reveals the path in an error message. | 5.0 |
2005-07-18 | CVE-2005-2288 | Unspecified vulnerability in PHPcounter 7.2 Cross-site scripting (XSS) vulnerability in PHPCounter 7.2 allows remote attackers to inject arbitrary web script or HTML via the EpochPrefix parameter. network phpcounter | 4.3 |