Php Web Scripts : Security Vulnerabilities, CVEs,
SQL injection vulnerability in album.php in PHP WEB SCRIPT Dynamic Photo Gallery 1.02 allows remote attackers to execute arbitrary SQL commands via the albumID parameter.
Max CVSS
7.5
EPSS Score
0.08%
Published
2008-03-05
Updated
2018-10-11
PHP remote file inclusion vulnerability in info.php in Easy Banner Pro 2.8 allows remote attackers to execute arbitrary PHP code via a URL in the s[phppath] parameter.
Max CVSS
7.5
EPSS Score
6.57%
Published
2007-01-11
Updated
2018-10-16
PHP remote file inclusion vulnerability in functions.php in PHP Web Scripts Easy Banner Free allows remote attackers to execute arbitrary PHP code via a URL in the s[phppath] parameter.
Max CVSS
7.5
EPSS Score
3.91%
Published
2006-10-05
Updated
2018-10-17
PHP remote file inclusion vulnerability in Ad Manager Pro 2.6 allows remote attackers to execute arbitrary PHP code via a URL in the (1) ipath parameter in common.php and (2) unspecified vectors in ad.php.
Max CVSS
7.5
EPSS Score
13.14%
Published
2006-06-23
Updated
2017-10-19
SQL injection vulnerability in advertiser_statistic.php in Ad Manager Pro 2.0 and earlier allows remote attackers to execute arbitrary SQL commands via the ad_number parameter.
Max CVSS
7.5
EPSS Score
0.31%
Published
2005-12-14
Updated
2008-09-20
Cross-site scripting (XSS) vulnerability in Link Up Gold 2.5 and earlier allows remote attackers to inject arbitrary web script or HTML via (1) link parameter to tell_friend.php, (2) phrase[] parameter to search.php in a search_links_advanced action, and the (3) direction or (4) sort parameter to articles.php.
Max CVSS
4.3
EPSS Score
0.29%
Published
2005-12-14
Updated
2011-03-08
SQL injection vulnerability in poll.php in Link Up Gold 2.5 and earlier allows remote attackers to execute arbitrary SQL commands via the number parameter.
Max CVSS
7.5
EPSS Score
0.32%
Published
2005-12-14
Updated
2008-09-20
7 vulnerabilities found