Vulnerabilities > Phpraider > Phpraider > 1.0.7

DATE CVE VULNERABILITY TITLE RISK
2009-08-24 CVE-2008-7035 Cross-Site Scripting vulnerability in multiple products
Cross-site scripting (XSS) vulnerability in an unspecified component in Simple Machines phpRaider 1.0.7 allows remote attackers to inject arbitrary web script or HTML via the resistance field. 		4.3
4.3
2008-06-18 CVE-2008-2769 Code Injection vulnerability in PHPraider 1.0.6/1.0.7
PHP remote file inclusion vulnerability in authentication/smf/smf.functions.php in Simple Machines phpRaider 1.0.6 and 1.0.7 allows remote attackers to execute arbitrary PHP code via a URL in the pConfig_auth[smf_path] parameter.
network
low complexity
phpraider CWE-94
7.5
7.5
2008-05-28 CVE-2008-2481 Code Injection vulnerability in PHPraider 1.0.7/1.0.7A
PHP remote file inclusion vulnerability in authentication/phpbb3/phpbb3.functions.php in phpRaider 1.0.7 and 1.0.7a, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the pConfig_auth[phpbb_path] parameter.
network
low complexity
phpraider CWE-94
critical
 10.0
10