Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
FraxPhp Recommend

3 matches found

CVE
CVEadded 2009/05/22 8:0 p.m.45 views

CVE-2009-1780

CVE-2009-1780 affects Frax.dk Php Recommend 1.3 and earlier. The issue is in the password-change flow where authentication is not required, enabling remote attackers to gain administrative privileges by submitting manipulated form_admin_user and form_admin_pass parameters. The core impact is unau...

7.5CVSS7.6AI score0.04014EPSS
CVE
CVEadded 2009/05/22 8:0 p.m.44 views

CVE-2009-1781

CVE-2009-1781 describes a static code injection vulnerability in admin.php of Frax.dk Php Recommend 1.3 and earlier. The issue allows remote attackers to inject arbitrary PHP code into phpre_config.php through the form_aula parameter, indicating a file/configuration handling flaw in older version...

7.5CVSS7.5AI score0.03691EPSS
CVE
CVEadded 2009/05/22 8:0 p.m.37 views

CVE-2009-1779

The CVE-2009-1779 issue affects Frax.dk Php Recommend 1.3 and earlier versions, where a remote file inclusion flaw in admin.php allows an attacker to execute arbitrary PHP code via a URL parameter named form_include_template. This is exploitable by remote attackers without authentication and resu...

7.5CVSS7.8AI score0.0369EPSS