Dragoon : Security Vulnerabilities, CVEs,
Directory traversal vulnerability in forum/kietu/libs/calendrier.php in Dragoon 0.1 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the cal[lng] parameter.
Max CVSS
7.5
EPSS Score
1.17%
Published
2008-04-15
Updated
2017-09-29
PHP remote file inclusion vulnerability in includes/header.inc.php in Dragoon 0.1 allows remote attackers to execute arbitrary PHP code via a URL in the root parameter.
Max CVSS
6.8
EPSS Score
1.77%
Published
2008-04-14
Updated
2017-09-29
2 vulnerabilities found