Filtered by vendor Boka
Subscriptions
Filtered by product Siteengine
Subscriptions
Total
4 CVE
CVE | Vendors | Products | Updated | CVSS v3.1 |
---|---|---|---|---|
CVE-2010-4357 | 1 Boka | 1 Siteengine | 2024-11-21 | N/A |
SQL injection vulnerability in comments.php in SiteEngine 7.1 allows remote attackers to execute arbitrary SQL commands via the module parameter. | ||||
CVE-2008-7269 | 1 Boka | 1 Siteengine | 2024-11-21 | N/A |
Open redirect vulnerability in api.php in SiteEngine 5.x allows user-assisted remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the forward parameter in a logout action. | ||||
CVE-2008-7268 | 1 Boka | 1 Siteengine | 2024-11-21 | N/A |
The phpinfo function in SiteEngine 5.x allows remote attackers to obtain system information by setting the action parameter to php_info in misc.php. | ||||
CVE-2008-7267 | 1 Boka | 1 Siteengine | 2024-11-21 | N/A |
SQL injection vulnerability in announcements.php in SiteEngine 5.x allows remote attackers to execute arbitrary SQL commands via the id parameter. |
Page 1 of 1.