Akarru : Security Vulnerabilities, CVEs, Published In 2006
PHP remote file inclusion vulnerability in akarru.gui/main_content.php in Akarru Social BookMarking Engine 0.4.3.34 and earlier, and possibly 0.4.4.120, allows remote attackers to execute arbitrary PHP code via a URL in the bm_content parameter.
Max CVSS
7.5
EPSS Score
16.83%
Published
2006-09-08
Updated
2018-10-17
SQL injection vulnerability in Akarru Social BookMarking Engine before 0.4.3.4 allows remote attackers to execute arbitrary SQL commands via unknown attack vectors, possibly involving the username parameter to akarru.lib/users.php.
Max CVSS
7.5
EPSS Score
0.65%
Published
2006-03-07
Updated
2017-07-20
2 vulnerabilities found