CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Webbiscuits: >> Modules Controller Security Vulnerabilities

CVE-2008-6138

PHP remote file inclusion vulnerability in adminhead.php in WebBiscuits Modules Controller 1.1 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the path[docroot] parameter.

CVSS Score

7.5

EPSS Score

0.01

Published

2009-02-14

CVE-2008-6139

Directory traversal vulnerability in faqsupport/wce.download.php in WebBiscuits Modules Controller 1.1 allows remote attackers to read arbitrary files via a .. (dot dot) in the download parameter.

CVSS Score

5.0

EPSS Score

0.016

Published

2009-02-14

Page 1

Vulnerabilities

Vulnerable Software

Webbiscuits: >> Modules Controller Security Vulnerabilities

Products

Pricing

Contact Us