Vulnerabilities > Powerphlogger
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2008-06-06 | CVE-2008-2562 | SQL Injection vulnerability in Powerphlogger 2.0.9/2.2.1/2.2.2A SQL injection vulnerability in edCss.php in PowerPhlogger 2.2.5 and earlier allows remote authenticated users to execute arbitrary SQL commands via the css_str parameter in an edit action. | 6.5 |
2007-03-03 | CVE-2006-7106 | Code Injection vulnerability in Powerphlogger PHP remote file inclusion vulnerability in config.inc.php3 in Power Phlogger 2.0.9 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the rel_path parameter. | 7.5 |
2002-12-31 | CVE-2002-1885 | Remote File Include vulnerability in Powerphlogger 2.0.9/2.2.1/2.2.2A PHP remote file inclusion vulnerability in showhits.php3 for PowerPhlogger (PPhlogger) 2.0.9 through 2.2.2 allows remote attackers to execute arbitrary PHP code via the rel_path parameter. | 7.5 |