Portix-php » Portix-php : Security Vulnerabilities, CVEs, CVSS score >= 5
SQL injection vulnerability in the login component in Portix-PHP 0.4.2 allows remote attackers to execute arbitrary SQL commands via the username and passwd (password) fields.
Max CVSS
7.5
EPSS Score
0.65%
Published
2007-01-16
Updated
2018-10-16
Multiple cross-site scripting (XSS) vulnerabilities in Portix-PHP 0.4.2 allow remote attackers to inject arbitrary web script or HTML via the (1) titre or (2) auteur field in a forum post.
Max CVSS
6.8
EPSS Score
2.41%
Published
2007-01-16
Updated
2018-10-16
Directory traversal vulnerability in index.php of Portix 0.4.02 allows remote attackers to read arbitrary files via a .. (dot dot) in the (1) l and (2) topic parameters.
Max CVSS
5.0
EPSS Score
2.23%
Published
2002-12-31
Updated
2008-09-05
3 vulnerabilities found