Linpha@1.3.2 Security Vulnerabilities and Issues — Linpha@1.3.2 CVE List

Lucene search

LinphaLinpha1.3.2

2 matches found

cve•added 2009/03/31 5:30 p.m.•44 views

CVE-2008-6571

Multiple cross-site scripting (XSS) vulnerabilities in LinPHA before 1.3.4 might allow remote attackers to inject arbitrary web script or HTML via (1) new_images.php, (2) login.php, and unspecified vectors.

4.3CVSS5.9AI score0.00357EPSS

cve•added 2008/04/16 7:5 p.m.•32 views

CVE-2008-1856

plugins/maps/db_handler.php in LinPHA 1.3.3 and earlier does not require authentication for a settings action that modifies the configuration file, which allows remote attackers to conduct directory traversal attacks and execute arbitrary local files by placing directory traversal sequences into th...

5.1CVSS7.4AI score0.03443EPSS