Vulnerabilities > Webbiscuits > Modules Controller
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2009-02-14 | CVE-2008-6139 | Path Traversal vulnerability in Webbiscuits Modules Controller 1.1 Directory traversal vulnerability in faqsupport/wce.download.php in WebBiscuits Modules Controller 1.1 allows remote attackers to read arbitrary files via a .. | 5.0 |
2009-02-14 | CVE-2008-6138 | Code Injection vulnerability in Webbiscuits Modules Controller PHP remote file inclusion vulnerability in adminhead.php in WebBiscuits Modules Controller 1.1 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the path[docroot] parameter. | 7.5 |