The file upload capability in PHP versions 3 and 4 allows remote attackers to read arbitrary files by setting hidden form fields whose names match the names of internal PHP script...
6.9AI Score
0.008EPSS
admin.php3 in PHP-Nuke does not properly verify the PHP-Nuke administrator password, which allows remote attackers to gain privileges by requesting a URL that does not specify the aid or pwd...
7.1AI Score
0.033EPSS
PHP3 with safe_mode enabled does not properly filter shell metacharacters from commands that are executed by popen, which could allow remote attackers to execute...
8.1AI Score
0.064EPSS
6.6AI Score
0.019EPSS
6.7AI Score
0.01EPSS
7.8AI Score
0.008EPSS