Akarru » Social Bookmarking Engine : Security Vulnerabilities, CVEs,
SQL injection vulnerability in Akarru Social BookMarking Engine before 0.4.3.4 allows remote attackers to execute arbitrary SQL commands via unknown attack vectors, possibly involving the username parameter to akarru.lib/users.php.
Max CVSS
7.5
EPSS Score
0.65%
Published
2006-03-07
Updated
2017-07-20
PHP remote file inclusion vulnerability in akarru.gui/main_content.php in Akarru Social BookMarking Engine 0.4.3.34 and earlier, and possibly 0.4.4.120, allows remote attackers to execute arbitrary PHP code via a URL in the bm_content parameter.
Max CVSS
7.5
EPSS Score
16.83%
Published
2006-09-08
Updated
2018-10-17
2 vulnerabilities found