Webportal: Security Vulnerabilities
PHP remote file inclusion vulnerability in indexk.php in WebPortal CMS 0.8-beta allows remote attackers to execute arbitrary PHP code via a URL in the lib_path parameter.
CVSS Score
7.5
EPSS Score
0.01
Published
2009-04-27
SQL injection vulnerability in download.php in WebPortal CMS 0.7.4 and earlier allows remote attackers to execute arbitrary SQL commands via the aid parameter.
CVSS Score
7.5
EPSS Score
0.002
Published
2008-09-30
Multiple SQL injection vulnerabilities in WebPortal CMS 0.6-beta allow remote attackers to execute arbitrary SQL commands via the user_name parameter to actions.php, and unspecified other vectors.
CVSS Score
6.8
EPSS Score
0.002
Published
2008-01-08
SQL injection vulnerability in index.php in WebPortal CMS 0.6.0 and earlier allows remote attackers to execute arbitrary SQL commands via the m parameter.
CVSS Score
7.5
EPSS Score
0.003
Published
2008-01-04