Vulnerabilities > Phpok > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-06-20 | CVE-2020-21486 | SQL Injection vulnerability in PHPok 5.4 SQL injection vulnerability in PHPOK v.5.4. | 7.5 |
| 2023-06-07 | CVE-2023-33601 | Unrestricted Upload of File with Dangerous Type vulnerability in PHPok 6.4.100 An arbitrary file upload vulnerability in /admin.php?c=upload of phpok v6.4.100 allows attackers to execute arbitrary code via a crafted PHP file. | 8.8 |
| 2023-05-25 | CVE-2023-2888 | Unspecified vulnerability in PHPok 6.4.100 A vulnerability, which was classified as problematic, was found in PHPOK 6.4.100. | 8.8 |
| 2023-05-11 | CVE-2021-34076 | Unrestricted Upload of File with Dangerous Type vulnerability in PHPok 5.7.140 File Upload vulnerability in PHPOK 5.7.140 allows remote attackers to run arbitrary code and gain escalated privileges via crafted zip file upload. | 8.8 |
| 2021-11-02 | CVE-2020-18438 | Path Traversal vulnerability in PHPok 5.1 Directory traversal vulnerability in qinggan phpok 5.1, allows attackers to disclose sensitive information, via the title parameter to admin.php. | 7.5 |
| 2021-05-10 | CVE-2020-19199 | Cross-Site Request Forgery (CSRF) vulnerability in PHPok 5.2.060 A Cross Site Request Forgery (CSRF) vulnerability exists in PHPOK 5.2.060 via admin.php?c=admin&f=save, which could let a remote malicious user execute arbitrary code. | 8.8 |
| 2019-09-09 | CVE-2019-16131 | Unrestricted Upload of File with Dangerous Type vulnerability in PHPok Oklite 1.2.25 framework/admin/modulec_control.php in OKLite v1.2.25 has an Arbitrary File Upload Vulnerability because a .php file from a ZIP archive can be written to /data/cache/. | 8.8 |
| 2018-11-26 | CVE-2018-19562 | Unrestricted Upload of File with Dangerous Type vulnerability in PHPok 4.9.015 An issue was discovered in PHPok 4.9.015. | 8.8 |
| 2018-06-15 | CVE-2018-12492 | Improper Input Validation vulnerability in PHPok 4.9.032 PHPOK 4.9.032 has an arbitrary file deletion vulnerability in the delfile_f function in framework/admin/tpl_control.php. | 7.5 |