Vulnerabilities > Xnova
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2009-02-02 | CVE-2008-6023 | Code Injection vulnerability in Xnova 0.8 PHP remote file inclusion vulnerability in includes/todofleetcontrol.php in a newer version of Xnova, possibly 0.8 sp1, allows remote attackers to execute arbitrary PHP code via a URL in the xnova_root_path parameter. | 7.5 |
2009-02-02 | CVE-2008-6022 | Code Injection vulnerability in Xnova 0.8 PHP remote file inclusion vulnerability in includes/todofleetcontrol.php in an older version of Xnova, possibly 0.8 sp1, allows remote attackers to execute arbitrary PHP code via a URL in the ugamela_root_path parameter. | 7.5 |