Phpht Topsites Security Vulnerabilities and Issues — Phpht Topsites CVE List

Lucene search

Hinton DesignPhpht Topsites

5 matches found

CVE•added 2006/02/13 11:6 a.m.•45 views

CVE-2006-0653

Multiple SQL injection vulnerabilities in Hinton Design phpht Topsites 1.3 allow remote attackers to execute arbitrary SQL commands via multiple vectors including the username parameter.

7.5CVSS8.5AI score0.00603EPSS

CVE•added 2006/10/23 5:7 p.m.•38 views

CVE-2006-5458

PHP remote file inclusion vulnerability in common.php in Hinton Design phpht Topsites allows remote attackers to execute arbitrary PHP code via a URL in the phpht_real_path parameter.

7.5CVSS7.5AI score0.03637EPSS

CVE•added 2006/10/23 5:7 p.m.•33 views

CVE-2006-5460

Multiple PHP remote file inclusion vulnerabilities in Hinton Design phpht Topsites allow remote attackers to execute arbitrary PHP code via a URL in the phpht_real_path parameter to (1) index.php, (2) certain other scripts in the top-level directory, and (3) certain scripts in the admin/ directory....

7.5CVSS8AI score0.03637EPSS

CVE•added 2006/02/13 11:6 a.m.•29 views

CVE-2006-0654

check.php in Hinton Design phpht Topsites 1.3 does not validate passwords when using cookies, which allows remote attackers to bypass authentication via unspecified cookies.

7.5CVSS7AI score0.0076EPSS

CVE•added 2006/02/13 11:6 a.m.•28 views

CVE-2006-0655

Multiple cross-site scripting (XSS) vulnerabilities in (1) link_edited.php and (2) link_added.php in Hinton Design phpht Topsites 1.3 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors.

4.3CVSS5.8AI score0.00444EPSS