Kwsphp : Security Vulnerabilities, CVEs, Published In 2008 CVSS score >= 1
SQL injection vulnerability in the jeuxflash module for KwsPHP allows remote attackers to execute arbitrary SQL commands via the cat parameter to index.php, a different vector than CVE-2007-4922.
Max CVSS
7.5
EPSS Score
0.09%
Published
2008-04-12
Updated
2017-09-29
SQL injection vulnerability in the ConcoursPhoto module for KwsPHP allows remote attackers to execute arbitrary SQL commands via the C_ID parameter to index.php.
Max CVSS
7.5
EPSS Score
0.06%
Published
2008-04-12
Updated
2017-09-29
Cross-site scripting (XSS) vulnerability in index.php in the ConcoursPhoto module for KwsPHP 1.0 allows remote attackers to inject arbitrary web script or HTML via the VIEW parameter.
Max CVSS
4.3
EPSS Score
0.21%
Published
2008-04-12
Updated
2018-10-11
3 vulnerabilities found