CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Phpcards: Security Vulnerabilities

CVE-2006-5604

Directory traversal vulnerability in phpcards.header.php in phpCards 1.3 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the CardLanguageFile parameter.

CVSS Score

7.5

EPSS Score

0.004

Published

2006-10-30

CVE-2006-5605

Multiple cross-site scripting (XSS) vulnerabilities in phpcards.footer.php in phpCards 1.3 allow remote attackers to inject arbitrary web script or HTML via the CardFontFace parameter and other unspecified parameters.

CVSS Score

6.8

EPSS Score

0.006

Published

2006-10-30

Page 1

Vulnerabilities

Vulnerable Software

Phpcards: Security Vulnerabilities

Products

Pricing

Contact Us