Vulnerabilities > Phpraider > Phpraider
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2009-08-24 | CVE-2008-7035 | Cross-Site Scripting vulnerability in multiple products Cross-site scripting (XSS) vulnerability in an unspecified component in Simple Machines phpRaider 1.0.7 allows remote attackers to inject arbitrary web script or HTML via the resistance field. | 4.3 |
2008-06-18 | CVE-2008-2769 | Code Injection vulnerability in PHPraider 1.0.6/1.0.7 PHP remote file inclusion vulnerability in authentication/smf/smf.functions.php in Simple Machines phpRaider 1.0.6 and 1.0.7 allows remote attackers to execute arbitrary PHP code via a URL in the pConfig_auth[smf_path] parameter. | 7.5 |
2008-05-28 | CVE-2008-2481 | Code Injection vulnerability in PHPraider 1.0.7/1.0.7A PHP remote file inclusion vulnerability in authentication/phpbb3/phpbb3.functions.php in phpRaider 1.0.7 and 1.0.7a, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the pConfig_auth[phpbb_path] parameter. | 10.0 |
2007-06-26 | CVE-2007-3415 | SQL Injection vulnerability in PHPraider 1.0.0Rc8 Multiple SQL injection vulnerabilities in index.php in phpRaider 1.0.0 rc8 allow remote attackers to execute arbitrary SQL commands via the (1) id or (2) type parameter. | 7.5 |