CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Openengine: >> Openengine >> 1.7.1 Security Vulnerabilities

CVE-2008-4329

PHP remote file inclusion vulnerability in cms/system/openengine.php in openEngine 2.0 beta4 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the oe_classpath parameter.

CVSS Score

10.0

EPSS Score

0.015

Published

2008-09-30

CVE-2006-2280

Directory traversal vulnerability in website.php in openEngine 1.8 Beta 2 and earlier allows remote attackers to list arbitrary directories and read arbitrary files via a .. (dot dot) in the template parameter.

CVSS Score

5.0

EPSS Score

0.047

Published

2006-05-10

Page 1

Vulnerabilities

Vulnerable Software

Openengine: >> Openengine >> 1.7.1 Security Vulnerabilities

Products

Pricing

Contact Us