Shodan
Vulnerabilities
Vulnerable Software
China-On-Site:  >> Flexphpdirectory  >> 0.0.1  Security Vulnerabilities
CVE-2008-6749
Multiple SQL injection vulnerabilities in admin/usercheck.php in FlexPHPDirectory 0.0.1, when magic_quotes_gpc is disabled, allow remote attackers to execute arbitrary SQL commands via the (1) checkuser and (2) checkpass parameters.
CVSS Score
6.8
EPSS Score
0.002
Published
2009-04-24
CVE-2008-6750
Unrestricted file upload vulnerability in add.php in FlexPHPDirectory 0.0.1 allows remote attackers to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in photo/.
CVSS Score
6.8
EPSS Score
0.033
Published
2009-04-24


Products
Pricing
Contact Us

Shodan ® - All rights reserved