Phpmyvisites@* Security Vulnerabilities and Issues — Phpmyvisites@* CVE List

Lucene search

Matthieu AubryPhpmyvisites*

3 matches found

CVE•added 2007/02/12 11:28 p.m.•37 views

CVE-2007-0892

CRLF injection vulnerability in phpMyVisites before 2.2 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via CRLF sequences in the url parameter, when the pagename parameter begins with "FILE:".

7.5CVSS7AI score0.00619EPSS

CVE•added 2007/02/12 11:28 p.m.•36 views

CVE-2007-0891

Cross-site scripting (XSS) vulnerability in the GetCurrentCompletePath function in phpmyvisites.php in phpMyVisites before 2.2 allows remote attackers to inject arbitrary web script or HTML via the query string.

4.3CVSS5.7AI score0.00553EPSS

CVE•added 2007/02/12 11:28 p.m.•33 views

CVE-2007-0893

Directory traversal vulnerability in phpMyVisites before 2.2 allows remote attackers to include arbitrary files via leading ".." sequences on the pmv_ck_view COOKIE parameter, which bypasses the protection scheme.

5CVSS6.8AI score0.01442EPSS