CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Nitrotech: Security Vulnerabilities

CVE-2008-5333

SQL injection vulnerability in members.php in NitroTech 0.0.3a allows remote attackers to execute arbitrary SQL commands via the id parameter.

CVSS Score

7.5

EPSS Score

0.001

Published

2008-12-05

CVE-2008-5334

PHP remote file inclusion vulnerability in includes/common.php in NitroTech 0.0.3a allows remote attackers to execute arbitrary PHP code via a URL in the root parameter.

CVSS Score

10.0

EPSS Score

0.012

Published

2008-12-05

CVE-2006-6938

Directory traversal vulnerability in includes/common.php in NitroTech 0.0.3a, as distributed before 2006, allows remote attackers to include arbitrary files via ".." sequences in the root parameter.

CVSS Score

5.0

EPSS Score

0.03

Published

2007-01-17

Page 1

Vulnerabilities

Vulnerable Software

Nitrotech: Security Vulnerabilities

Products

Pricing

Contact Us