Vulnerabilities > Phpraider > Phpraider > 1.0.7
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2009-08-24 | CVE-2008-7035 | Cross-Site Scripting vulnerability in multiple products Cross-site scripting (XSS) vulnerability in an unspecified component in Simple Machines phpRaider 1.0.7 allows remote attackers to inject arbitrary web script or HTML via the resistance field. | 4.3 |
2008-06-18 | CVE-2008-2769 | Code Injection vulnerability in PHPraider 1.0.6/1.0.7 PHP remote file inclusion vulnerability in authentication/smf/smf.functions.php in Simple Machines phpRaider 1.0.6 and 1.0.7 allows remote attackers to execute arbitrary PHP code via a URL in the pConfig_auth[smf_path] parameter. | 7.5 |
2008-05-28 | CVE-2008-2481 | Code Injection vulnerability in PHPraider 1.0.7/1.0.7A PHP remote file inclusion vulnerability in authentication/phpbb3/phpbb3.functions.php in phpRaider 1.0.7 and 1.0.7a, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the pConfig_auth[phpbb_path] parameter. | 10.0 |