Lucene search

Tutos Security Vulnerabilities

cve

CVE-2008-0148

TUTOS 1.3 does not restrict access to php/admin/cmd.php, which allows remote attackers to execute arbitrary shell commands via the cmd parameter in a direct...

7.6AI Score

0.006EPSS

2008-01-09 12:46 AM

cve

CVE-2008-0149

TUTOS 1.3 allows remote attackers to read system information via a direct request to php/admin/phpinfo.php, which calls the phpinfo...

5.3AI Score

0.004EPSS

2008-01-09 12:46 AM

cve

CVE-2004-2161

SQL injection vulnerability in file_overview.php in TUTOS 1.1 allows remote attackers to execute arbitrary SQL commands via the link_id...

8.1AI Score

0.153EPSS

2005-07-10 04:00 AM

cve

CVE-2004-2162

Multiple cross-site scripting (XSS) vulnerabilities in TUTOS 1.1 allow remote attackers to inject arbitrary web script or HTML via (1) the search field of the Address Module or (2) the t parameter to...

5.6AI Score

0.008EPSS

2005-07-10 04:00 AM