Vulnerabilities > Softerra

DATE CVE VULNERABILITY TITLE RISK
2007-03-31 CVE-2007-1787 Remote File Include vulnerability in Softerra Time-Assistant
Multiple PHP remote file inclusion vulnerabilities in lib/timesheet.class.php in Softerra Time-Assistant 6.2 and earlier, when register_globals is enabled, allow remote attackers to execute arbitrary PHP code via a URL in the (1) inc_dir or (2) lib_dir parameter.
network
softerra
critical
9.3
2006-10-24 CVE-2006-5472 Remote Security vulnerability in PHP Developer Library
PHP remote file inclusion vulnerability in Softerra PHP Developer Library 1.5.3 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the lib_dir parameter in (1) lib/registry.lib.php, (2) lib/sqlcompose.lib.php, and (3) lib/sqlsearch.lib.php.
network
low complexity
softerra
7.5
2006-10-24 CVE-2006-5471 Remote File Include vulnerability in Softerra PHP Developer Library Grid3.lib.PHP
PHP remote file inclusion vulnerability in example/lib/grid3.lib.php in Softerra PHP Developer Library 1.5.3 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the (1) cfg_dir and (2) lib_dir parameters.
network
low complexity
softerra
7.5