Linpha@* Security Vulnerabilities and Issues — Linpha@* CVE List

Lucene search

LinphaLinpha*

5 matches found

CVE•added 2009/03/31 5:30 p.m.•44 views

CVE-2008-6571

Multiple cross-site scripting (XSS) vulnerabilities in LinPHA before 1.3.4 might allow remote attackers to inject arbitrary web script or HTML via (1) new_images.php, (2) login.php, and unspecified vectors.

4.3CVSS5.9AI score0.00357EPSS

Web

CVE•added 2007/07/30 5:30 p.m.•38 views

CVE-2007-4053

SQL injection vulnerability in include/img_view.class.php in LinPHA 1.3.1 and earlier allows remote attackers to execute arbitrary SQL commands via the order parameter to new_images.php.

7.5CVSS8.4AI score0.00979EPSS

Web

CVE•added 2009/09/14 2:30 p.m.•33 views

CVE-2008-7223

Multiple cross-site scripting (XSS) vulnerabilities in LinPHA before 1.3.3 allow remote attackers to inject arbitrary web script or HTML via (1) ftp/index.php, (2) viewer.php, (3) functions/other.php, (4) include/left_menu.class.php, or (5) plugins/stats/stats_view.php.

4.3CVSS5.9AI score0.00359EPSS

Web

CVE•added 2008/04/16 7:5 p.m.•32 views

CVE-2008-1856

plugins/maps/db_handler.php in LinPHA 1.3.3 and earlier does not require authentication for a settings action that modifies the configuration file, which allows remote attackers to conduct directory traversal attacks and execute arbitrary local files by placing directory traversal sequences into th...

5.1CVSS7.4AI score0.03443EPSS

Web

CVE•added 2008/03/24 11:44 p.m.•29 views

CVE-2008-1487

4.3CVSS5.8AI score0.00296EPSS