W2B : Security Vulnerabilities, CVEs, Published In 2009 CVSS score >= 5
SQL injection vulnerability in search.php in phpDatingClub 3.7 allows remote attackers to execute arbitrary SQL commands via the sform[day] parameter.
Max CVSS
7.5
EPSS Score
0.13%
Published
2009-06-23
Updated
2017-09-29
Unrestricted file upload vulnerability in index.php in phpAdBoard 1.8 allows remote attackers to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in photoes/.
Max CVSS
7.5
EPSS Score
9.24%
Published
2009-08-10
Updated
2017-09-29
Unrestricted file upload vulnerability in auth.php in phpEmployment 1.8 allows remote attackers to execute arbitrary code by uploading a file with an executable extension during a regnew action, then accessing it via a direct request to the file in photoes/.
Max CVSS
7.5
EPSS Score
9.24%
Published
2009-08-10
Updated
2017-09-29
Unrestricted file upload vulnerability in index.php in phpGreetCards 3.7 allows remote attackers to execute arbitrary PHP code by uploading a file with an executable extension, then accessing it via a via a link that is listed by userfiles/number_shell.php.
Max CVSS
6.8
EPSS Score
2.47%
Published
2009-07-07
Updated
2017-09-29
4 vulnerabilities found