Vulnerabilities > Plohni
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2010-04-20 | CVE-2009-4767 | Cross-Site Scripting vulnerability in Plohni Shoutbox 1.0 Multiple cross-site scripting (XSS) vulnerabilities in index.php in Plohni Shoutbox 1.0 allow remote attackers to inject arbitrary web script or HTML via the (1) input_name and (2) input_text parameters. | 4.3 |
| 2010-01-18 | CVE-2009-4623 | Code Injection vulnerability in Plohni Advanced Comment System 1.0 Multiple PHP remote file inclusion vulnerabilities in Advanced Comment System 1.0 allow remote attackers to execute arbitrary PHP code via a URL in the ACS_path parameter to (1) index.php and (2) admin.php in advanced_comment_system/. | 7.5 |
| 2009-09-24 | CVE-2009-3367 | Cross-Site Scripting vulnerability in Plohni AN Image Gallery 1.0 Multiple cross-site scripting (XSS) vulnerabilities in An image gallery 1.0 allow remote attackers to inject arbitrary web script or HTML via the path parameter to (1) index.php and (2) main.php, and the (3) show parameter to main.php. | 4.3 |
| 2009-09-24 | CVE-2009-3366 | Path Traversal vulnerability in Plohni AN Image Gallery 1.0 Directory traversal vulnerability in navigation.php in An image gallery 1.0 allows remote attackers to list arbitrary directories via a .. | 5.0 |
| 2009-09-24 | CVE-2009-3356 | SQL Injection vulnerability in Plohni Image Voting 1.0 SQL injection vulnerability in index.php in Image voting 1.0 allows remote attackers to execute arbitrary SQL commands via the show parameter. | 7.5 |