Vulnerabilities > Vwar > Virtual WAR > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2006-03-30 | CVE-2006-1503 | Code Injection vulnerability in Vwar Virtual WAR PHP remote file inclusion vulnerability in includes/functions_install.php in Virtual War (VWar) 1.5.0 R11 and earlier allows remote attackers to include and execute arbitrary PHP code via a URL in the vwar_root parameter. | 5.1 |
| 2005-12-31 | CVE-2005-4748 | Remote File Include vulnerability in Vwar Virtual WAR 1.3/1.4/1.5.0R10 PHP remote file include vulnerability in functions_admin.php in Virtual War (VWar) 1.5.0 R10 allows remote attackers to include and execute arbitrary PHP code via unspecified attack vectors. network vwar | 6.8 |