Vulnerabilities > Scripts4You > FAQ Manager > 1.2
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2008-12-01 | CVE-2008-5288 | Code Injection vulnerability in Scripts4You FAQ Manager 1.2 PHP remote file inclusion vulnerability in include/header.php in Werner Hilversum FAQ Manager 1.2, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the config_path parameter. | 6.8 |
| 2008-12-01 | CVE-2008-5287 | SQL Injection vulnerability in Scripts4You FAQ Manager 1.2 SQL injection vulnerability in catagorie.php in Werner Hilversum FAQ Manager 1.2 allows remote attackers to execute arbitrary SQL commands via the cat_id parameter. | 7.5 |