Freereprintables: >> Articlefr >> 3.0.4 Security Vulnerabilities
A Privilege Escalation Vulnerability exists in Free Reprintables ArticleFR 11.06.2014 due to insufficient access restrictions in the data.php script, which could let a remote malicious user obtain access or modify or delete database information.
CVSS Score
9.8
EPSS Score
0.478
Published
2020-02-13
Directory traversal vulnerability in application/templates/amelia/loadjs.php in Free Reprintables ArticleFR 3.0.7 and earlier allows local users to read arbitrary files via the s parameter.
CVSS Score
5.5
EPSS Score
0.001
Published
2020-01-15
Multiple SQL injection vulnerabilities in Free Reprintables ArticleFR 3.0.4 and earlier allow remote attackers to execute arbitrary SQL commands via the id parameter in a (1) get or (2) set action to rate.php.
CVSS Score
7.5
EPSS Score
0.01
Published
2014-08-22