CVEDB API

Vulnerabilities

Vulnerable Software

Portail Web Php: >> Portail Web Php >> 0.99 Security Vulnerabilities

CVE-2007-0699

PHP remote file inclusion vulnerability in includes/includes.php in Guernion Sylvain Portail Web Php (aka Gsylvain35 Portail Web, PwP) before 2.5.1.1 allows remote attackers to execute arbitrary PHP code via a URL in the site_path parameter.

CVSS Score

7.5

EPSS Score

0.088

Published

2007-02-04

CVE-2002-2277

SQL injection vulnerability in mod_search/index.php in PortailPHP 0.99 allows remote attackers to execute arbitrary SQL commands via the (1) $rech, (2) $BD_Tab_docs, (3) $BD_Tab_file, (4) $BD_Tab_liens, (5) $BD_Tab_faq, or (6) $chemin variables.

CVSS Score

7.5

EPSS Score

0.004

Published

2002-12-31

CVE-2002-2278

Cross-site scripting (XSS) vulnerability in mod_search/index.php in PortailPHP 0.99 allows remote attackers to inject arbitrary web script or HTML via the (1) $App_Theme, (2) $Rub_Search, (3) $Rub_News, (4) $Rub_File, (5) $Rub_Liens, or (6) $Rub_Faq variables.

CVSS Score

4.3

EPSS Score

0.002

Published

2002-12-31

Page 1

Vulnerabilities

Vulnerable Software

Portail Web Php: >> Portail Web Php >> 0.99 Security Vulnerabilities

Products

Pricing

Contact Us