An issue was discovered in PvPGN Stats 2.4.6. SQL Injection exists in ladder/stats.php via the GET user parameter.
Max CVSS
9.8
EPSS Score
0.15%
Published
2018-06-12
Updated
2018-07-24
An issue was discovered in PvPGN Stats 2.4.6. SQL Injection exists in ladder/stats.php via the GET sort_direction parameter.
Max CVSS
9.8
EPSS Score
0.15%
Published
2018-06-12
Updated
2018-07-24
An issue was discovered in PvPGN Stats 2.4.6. SQL Injection exist in ladder/stats.php via the GET type parameter.
Max CVSS
9.8
EPSS Score
0.15%
Published
2018-06-12
Updated
2018-07-24
An issue was discovered in PvPGN Stats 2.4.6. SQL Injection exists in ladder/stats.php via the GET game parameter.
Max CVSS
9.8
EPSS Score
0.15%
Published
2018-06-12
Updated
2018-07-24
An issue was discovered in PvPGN Stats 2.4.6. SQL Injection exists in ladder/stats.php via the POST user_search parameter.
Max CVSS
9.8
EPSS Score
0.15%
Published
2018-06-12
Updated
2018-07-24
pvpgn-support-installer in pvpgn 1.8.1 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/pvpgn-support-1.0.tar.gz temporary file.
Max CVSS
6.9
EPSS Score
0.04%
Published
2008-12-08
Updated
2008-12-16
Unspecified vulnerability in Player vs. Player Gaming Network (PvPGN) before 1.6.4 allows remote attackers to obtain attributes of arbitrary accounts, including the password hash, via certain statsreq packets.
Max CVSS
5.0
EPSS Score
0.69%
Published
2004-12-31
Updated
2017-07-29
7 vulnerabilities found
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!