CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

PHP remote file inclusion vulnerability in tools/phpmailer/class.phpmailer.php in PHP Classifieds 7.3 allows remote attackers to execute arbitrary PHP code via a URL in the langpath parameter...

7.5CVSS8AI score0.0051EPSS

Exploits1References2Affected Software1

Cvelist•added 2007/04/25 5:0 p.m.•21 views

CVE-2007-2255

Multiple PHP remote file inclusion vulnerabilities in Download-Engine 1.4.3 allow remote attackers to execute arbitrary PHP code via a URL in the 1 engdir parameter to addmember.php, 2 langpath parameter to admin/enginelib/class.phpmailer.php, and the 3 spawroot parameter to...

7.3AI score0.012EPSS

Exploits0References6

CVE•added 2005/07/11 4:0 a.m.•379 views

CVE-2005-2198

SPiD (a PHP-based photo gallery) is affected by CVE-2005-2198 due to a remote file inclusion vulnerability in lang.php. The flaw allows an attacker to influence the lang_path parameter to include PHP code from an attacker-controlled location, enabling arbitrary code execution and potential disclo...

7.5CVSS7.8AI score0.02961EPSS

Exploits1References4Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by