Dolphin@6.1.2 Security Vulnerabilities and Issues — Dolphin@6.1.2 CVE List

Lucene search

BoonexDolphin6.1.2

2 matches found

CVE•added 2012/02/23 8:7 p.m.•41 views

CVE-2012-0873

Multiple cross-site scripting (XSS) vulnerabilities in Boonex Dolphin before 7.0.8 allow remote attackers to inject arbitrary web script or HTML via the (1) explain parameter to explanation.php or the (2) photos_only, (3) online_only, or (4) mode parameters to viewFriends.php.

4.3CVSS5.9AI score0.09782EPSS

CVE•added 2008/07/14 11:41 p.m.•32 views

CVE-2008-3167

Multiple PHP remote file inclusion vulnerabilities in BoonEx Dolphin 6.1.2, when register_globals is enabled, allow remote attackers to execute arbitrary PHP code via a URL in the (1) dir[plugins] parameter to (a) HTMLSax3.php and (b) safehtml.php in plugins/safehtml/ and the (2) sIncPath parameter...

9.3CVSS7.6AI score0.03027EPSS