Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
4.3
CVE-2008-6453
- EPSS 1.67%
- Published 13.03.2009 10:30:00
- Last modified 09.04.2025 00:30:58
Directory traversal vulnerability in section.php in 6rbScript 3.3, when magic_quotes_gpc is disabled, allows remote attackers to read arbitrary files via a .. (dot dot) in the name parameter.
7.5
CVE-2008-6454
- EPSS 0.14%
- Published 13.03.2009 10:30:00
- Last modified 09.04.2025 00:30:58
SQL injection vulnerability in section.php in 6rbScript 3.3 allows remote attackers to execute arbitrary SQL commands via the singerid parameter in a singers action.
7.5
CVE-2008-4344
- EPSS 0.16%
- Published 30.09.2008 17:22:09
- Last modified 09.04.2025 00:30:58
SQL injection vulnerability in cat.php in 6rbScript allows remote attackers to execute arbitrary SQL commands via the CatID parameter.
1