Baconmap : Security Vulnerabilities, CVEs, CVSS score >= 6
Directory traversal vulnerability in admin/updatelist.php in BaconMap 1.0 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the filepath parameter.
Max CVSS
6.0
EPSS Score
1.02%
Published
2011-04-27
Updated
2017-08-17
SQL injection vulnerability in doadd.php in BaconMap 1.0 allows remote attackers to execute arbitrary SQL commands via the type parameter.
Max CVSS
7.5
EPSS Score
0.12%
Published
2011-04-27
Updated
2017-08-17
2 vulnerabilities found