Lucene search

K

Phpabook Security Vulnerabilities

cve
cve

CVE-2022-30352

phpABook 0.9i is vulnerable to SQL Injection due to insufficient sanitization of user-supplied data in the "auth_user" parameter in index.php...

9.8CVSS

9.8AI Score

0.005EPSS

2022-06-02 02:15 PM
33
4
cve
cve

CVE-2020-8510

An issue was discovered in phpABook 0.9 Intermediate. On the login page, if one sets a userInfo cookie with the value of admin+1+en (user+perms+lang), one can login as any user without a...

9.8CVSS

9.3AI Score

0.003EPSS

2020-02-03 03:15 PM
37
cve
cve

CVE-2008-4490

Directory traversal vulnerability in config.inc.php in phpAbook 0.8.8b and earlier, when magic_quotes_gpc is disabled, allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the userInfo...

7.1AI Score

0.007EPSS

2008-10-08 02:00 AM
22