Vulnerabilities > Voice OF WEB
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2007-01-11 | CVE-2007-0172 | Remote File Include vulnerability in AllMyGuests Multiple PHP remote file inclusion vulnerabilities in AllMyGuests 0.3.0 and earlier allow remote attackers to execute arbitrary PHP code via a URL in the AMG_serverpath parameter to (1) comments.php and (2) signin.php; and possibly via a URL in unspecified parameters to (3) include/submit.inc.php, (4) admin/index.php, (5) include/cm_submit.inc.php, and (6) index.php. | 7.5 |
2007-01-11 | CVE-2007-0171 | Remote File Include vulnerability in Retired: AllMyLinks PHP remote file inclusion vulnerability in index.php in AllMyLinks 0.5.0 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the AML_opensite parameter. | 7.5 |
2006-09-26 | CVE-2006-4993 | Remote File Include vulnerability in AllMyGuests SignIn.PHP Multiple PHP remote file inclusion vulnerabilities in AllMyGuests 0.4.1 and earlier allow remote attackers to execute arbitrary PHP code via a URL in the _AMGconfig[cfg_serverpath] parameter in (1) modules/AllMyGuests/signin.php (aka the Nuke module) and (2) AllMyGuests/signin.php (aka the standalone). | 7.5 |
2004-11-23 | CVE-2004-0285 | Inclusion of Functionality from Untrusted Control Sphere vulnerability in Voice of web Allmyguests, Allmylinks and Allmyvisitors PHP remote file inclusion vulnerabilities in include/footer.inc.php in (1) AllMyVisitors, (2) AllMyLinks, and (3) AllMyGuests allow remote attackers to execute arbitrary PHP code via a URL in the _AMVconfig[cfg_serverpath] parameter. | 9.8 |