Nfec.de » Rechnungszentrale : Security Vulnerabilities, CVEs,
PHP remote file inclusion vulnerability in authent.php4 in Nicolas Fischer (aka NFec) RechnungsZentrale V2 1.1.3, and possibly earlier versions, allows remote attackers to execute arbitrary PHP code via a URL in the rootpath parameter.
Max CVSS
5.0
EPSS Score
3.46%
Published
2006-04-21
Updated
2017-10-19
SQL injection vulnerability in authent.php4 in Nicolas Fischer (aka NFec) RechnungsZentrale V2 1.1.3, and possibly earlier versions, allows remote attackers to execute arbitrary SQL commands via the User field.
Max CVSS
5.0
EPSS Score
1.51%
Published
2006-04-21
Updated
2017-10-19
2 vulnerabilities found