Vulnerabilities > Sendcard > Sendcard > 1.10
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2007-06-06 | CVE-2007-3082 | Local File Include vulnerability in SendCard Directory traversal vulnerability in sendcard.php in Sendcard 3.4.1 and earlier allows remote attackers to include and execute arbitrary local files via a .. | 7.8 |
2007-05-02 | CVE-2007-2472 | Cross-Site Scripting vulnerability in Sendcard Cross-site scripting (XSS) vulnerability in sendcard.php in Sendcard 3.4.1 and earlier allows remote attackers to inject arbitrary web script or HTML via the form parameter. network sendcard | 4.3 |
2007-05-02 | CVE-2007-2471 | Directory Traversal vulnerability in Sendcard Directory traversal vulnerability in sendcard.php in Sendcard 3.4.1 and earlier allows remote attackers to read arbitrary files via a full pathname in the form parameter. | 5.0 |
2006-03-06 | CVE-2006-1006 | SQL Injection vulnerability in Sendcard Multiple SQL injection vulnerabilities in sendcard.php in sendcard before 3.3.0 allow remote attackers to execute arbitrary SQL commands via unspecified parameters. | 7.5 |