Vulnerabilities > Phpsmartcom
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2008-09-30 | CVE-2008-4352 | SQL Injection vulnerability in PHPsmartcom 0.2 SQL injection vulnerability in inc/pages/viewprofile.php in phpSmartCom 0.2 allows remote attackers to execute arbitrary SQL commands via the uid parameter in a viewprofile action to index.php. | 7.5 |
2008-09-30 | CVE-2008-4351 | Path Traversal vulnerability in PHPsmartcom 0.2 Directory traversal vulnerability in index.php in phpSmartCom 0.2 allows remote attackers to include and execute arbitrary files via a .. | 7.5 |