SQL injection vulnerability in admin/journal_change_mask.inc.php in meBiblio 0.4.7 allows remote attackers to execute arbitrary SQL commands via the JID parameter.
Max CVSS
7.5
EPSS Score
0.10%
Published
2008-06-10
Updated
2017-09-29
PHP remote file inclusion vulnerability in index.php in meBiblio 0.4.5 allows remote attackers to execute arbitrary PHP code via a URL in the action parameter.
Max CVSS
9.3
EPSS Score
8.50%
Published
2007-11-22
Updated
2017-09-29
2 vulnerabilities found