Vallheru : Security Vulnerabilities, CVEs,
Multiple vulnerabilities in (1) bank.php, (2) landfill.php, (3) outposts.php, (4) tribes.php, (5) house.php, (6) tribearmor.php, (7) tribeastral.php, (8) tribeware.php, and (9) includes/head.php in Bartek Jasicki Vallheru before 1.3 beta have unknown impact and remote attack vectors, probably related to large integer values containing more than 15 digits. NOTE: the original vendor report is for integer overflows, but this is probably an incorrect usage of the term.
Max CVSS
10.0
EPSS Score
0.18%
Published
2007-03-10
Updated
2008-09-05
Multiple SQL injection vulnerabilities in mail.php in Vallheru before 1.0.7 allow remote attackers to execute arbitrary SQL commands via the (1) id or (2) to parameters. NOTE: some of these details are obtained from third party information.
Max CVSS
7.5
EPSS Score
0.57%
Published
2006-11-16
Updated
2017-07-20
2 vulnerabilities found