Linux Web Shop : Security Vulnerabilities, CVEs, CVSS score >= 1
PHP remote file inclusion vulnerability in templates/default/header.inc.php in Linux Web Shop (LWS) php User Base 1.3 BETA allows remote attackers to execute arbitrary PHP code via a URL in the menu parameter.
Max CVSS
7.5
EPSS Score
3.65%
Published
2008-02-27
Updated
2018-10-11
Directory traversal vulnerability in include/body.inc.php in Linux Web Shop (LWS) php Download Manager 1.0 and 1.1 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the content parameter.
Max CVSS
6.8
EPSS Score
1.78%
Published
2008-02-27
Updated
2017-09-29
2 vulnerabilities found