Vulnerabilities > Powerscripts > Powerclan
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2009-02-23 | CVE-2009-0707 | SQL Injection vulnerability in Powerscripts Powerclan 1.14A SQL injection vulnerability in admin/index.php in PowerClan 1.14a allows remote attackers to execute arbitrary SQL commands via the loginemail parameter (aka login field). | 7.5 |
2006-12-23 | CVE-2006-6715 | Remote File Include vulnerability in PowerClan Footer.Inc.PHP PHP remote file inclusion vulnerability in footer.inc.php in PowerClan 1.14a and earlier, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the settings[footer] parameter. | 5.1 |
2006-04-18 | CVE-2006-1805 | SQL Injection vulnerability in Powerscripts Powerclan 1.14 SQL injection vulnerability in member.php in PowerClan 1.14 allows remote attackers to execute arbitrary SQL commands via the memberid parameter. | 7.5 |