Ruben Boelinger : Security Vulnerabilities, CVEs, CVSS score >= 3
PHP remote file inclusion vulnerability in myflash-button.php in the myflash 1.00 and earlier plugin for WordPress allows remote attackers to execute arbitrary PHP code via a URL in the wpPATH parameter.
Max CVSS
7.5
EPSS Score
8.94%
Published
2007-05-03
Updated
2017-10-11
PHP remote file inclusion vulnerability in js/wptable-button.php in the wp-Table 1.43 and earlier plugin for WordPress, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the wpPATH parameter.
Max CVSS
6.8
EPSS Score
4.62%
Published
2007-05-03
Updated
2018-10-16
Directory traversal vulnerability in js/wptable-button.php in the wp-Table 1.43 and earlier plugin for WordPress, when register_globals is enabled, allows remote attackers to include and execute arbitrary local files via the wpPATH parameter.
Max CVSS
6.8
EPSS Score
1.74%
Published
2007-05-03
Updated
2018-10-16
Directory traversal vulnerability in wordtube-button.php in the wordTube 1.43 and earlier plugin for WordPress, when register_globals is enabled, allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the wpPATH parameter.
Max CVSS
6.8
EPSS Score
0.89%
Published
2007-05-03
Updated
2018-10-16
PHP remote file inclusion vulnerability in wordtube-button.php in the wordTube 1.43 and earlier plugin for WordPress, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the wpPATH parameter.
Max CVSS
6.8
EPSS Score
5.47%
Published
2007-05-03
Updated
2018-10-16
5 vulnerabilities found