Vulnerabilities > Sips > Sips > 0.3.0pl1
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2006-09-13 | CVE-2006-4733 | Remote File Include vulnerability in SIPS Box.Inc.PHP PHP remote file inclusion vulnerability in sipssys/code/box.inc.php in Haakon Nilsen simple, integrated publishing system (SIPS) 0.3.1 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the config[sipssys] parameter. | 7.5 |
2002-05-29 | CVE-2002-0267 | Unspecified vulnerability in Sips preferences.php in Simple Internet Publishing System (SIPS) before 0.3.1 allows remote attackers to gain administrative privileges via a linebreak in the "theme" field followed by the Status::admin command, which causes the Status line to be entered into the password file. | 10.0 |