Lucene search
K

7 matches found

CVE
CVE
added 2008/01/23 9:0 p.m.48 views

CVE-2008-0433

CVE-2008-0433 concerns Agares phpAutoVideo 2.21 and earlier, where a PHP remote file inclusion flaw exists in theme/phpAutoVideo/LightTwoOh/sidebar.php. The underlying issue allows an attacker to cause arbitrary PHP code execution by supplying a URL in the loadpage parameter. This entry is corrob...

7.5CVSS7.5AI score0.03137EPSS
Exploits1References6Affected Software1
Packet Storm
Packet Storm
added 2008/01/19 12:0 a.m.22 views

agares-xssrfi.txt

----------------------------------------------------------------------------------- - Author : H-T Team HouSSaMix & ToXiC350 From MoRoCCo - ----------------------------------------------------------------------------------- Script : Agares PhpAutoVideo 2.21 and below Download :...

7.4AI score
Exploits0
NVD
NVD
added 2008/01/15 8:0 p.m.21 views

CVE-2008-0262

SQL injection vulnerability in includes/articleblock.php in Agares PhpAutoVideo 2.21 allows remote attackers to execute arbitrary SQL commands via the articlecat parameter...

7.5CVSS8.4AI score0.00975EPSS
Exploits1References4
Prion
Prion
added 2008/01/03 11:46 p.m.16 views

Directory traversal

Directory traversal vulnerability in includes/block.php in Agares Media phpAutoVideo 2.21 allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the selectedprovider parameter...

6.8CVSS7.7AI score0.05343EPSS
Exploits1References6Affected Software1
NVD
NVD
added 2008/01/03 11:46 p.m.17 views

CVE-2007-6614

PHP remote file inclusion vulnerability in admin/frontpageright.php in Agares Media phpAutoVideo 2.21 allows remote attackers to execute arbitrary PHP code via a URL in the loadadminpage parameter, a related issue to CVE-2007-6542...

6.8CVSS7.4AI score0.06123EPSS
Exploits1References6
Prion
Prion
added 2008/01/03 11:46 p.m.14 views

Remote file inclusion

PHP remote file inclusion vulnerability in admin/frontpageright.php in Agares Media phpAutoVideo 2.21 allows remote attackers to execute arbitrary PHP code via a URL in the loadadminpage parameter, a related issue to CVE-2007-6542...

6.8CVSS7.7AI score0.06123EPSS
Exploits1References6Affected Software1
Cvelist
Cvelist
added 2008/01/03 11:0 p.m.23 views

CVE-2007-6615

Directory traversal vulnerability in includes/block.php in Agares Media phpAutoVideo 2.21 allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the selectedprovider parameter...

7.2AI score0.05343EPSS
Exploits1References6
Rows per page
Query Builder