Sma-db Security Vulnerabilities and Issues — Sma-db CVE List

Lucene search

Bluevirus-designSma-db

3 matches found

CVE•added 2009/04/28 3:30 p.m.•44 views

CVE-2009-1450

PHP remote file inclusion vulnerability in format.php in SMA-DB 0.3.12 allows remote attackers to execute arbitrary PHP code via a URL in the _page_content parameter.

7.5CVSS7.7AI score0.00582EPSS

CVE•added 2009/04/28 4:30 p.m.•41 views

CVE-2009-1452

Multiple PHP remote file inclusion vulnerabilities in theme/format.php in SMA-DB 0.3.13 allow remote attackers to execute arbitrary PHP code via a URL in the (1) _page_css and (2) _page_javascript parameters. NOTE: the _page_content vector is already is covered by CVE-2009-1450.

7.5CVSS7.8AI score0.0094EPSS

CVE•added 2009/04/28 3:30 p.m.•31 views

CVE-2009-1451

Cross-site scripting (XSS) vulnerability in startpage.php in SMA-DB 0.3.12 allows remote attackers to inject arbitrary web script or HTML via the PATH_INFO.

4.3CVSS5.9AI score0.00142EPSS