Klinza : Security Vulnerabilities, CVEs, CVSS score >= 6
Directory traversal vulnerability in funzioni/lib/menulast.php in klinza professional cms 5.0.1 and earlier allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the LANG parameter.
Max CVSS
9.3
EPSS Score
0.35%
Published
2009-12-07
Updated
2017-08-17
PHP remote file inclusion vulnerability in funzioni/lib/show_hlp.php in klinza professional cms 5.0.1 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the appl[APPL] parameter.
Max CVSS
7.5
EPSS Score
5.05%
Published
2006-10-10
Updated
2017-10-19
2 vulnerabilities found