Filtered by vendor Shadowed Portal Subscriptions
Filtered by product Shadowed Portal Subscriptions
Total 3 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2006-4885 1 Shadowed Portal 1 Shadowed Portal 2024-11-21 N/A
PHP remote file inclusion vulnerability in Shadowed Portal 5.599 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the root parameter in (1) footer.php and (2) header.php. NOTE: the provenance of this information is unknown; the details are obtained from third party information. The bottom.php parameter is already covered by CVE-2006-4826.
CVE-2006-4826 1 Shadowed Portal 1 Shadowed Portal 2024-11-21 N/A
PHP remote file inclusion vulnerability in bottom.php in Shadowed Portal 5.599 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the root parameter.
CVE-2006-1701 1 Shadowed Portal 1 Shadowed Portal 2024-11-21 N/A
Cross-site scripting (XSS) vulnerability in the Pages module in Shadowed Portal allows remote attackers to inject arbitrary web script or HTML via the page parameter to load.php.