2 matches found
CVE-2006-5079
Summary: CVE-2006-5079 is a PHP remote file inclusion vulnerability in the class.mysql.php component of Matt Humphrey’s paBugs 2.0 Beta 3 and earlier. The flaw allows an attacker to execute arbitrary PHP code by supplying a URL in the path_to_bt_dir parameter. The CVSSv2 base metrics suggest netw...
CVE-2007-4183
The CVE-2007-4183 issue affects the PHP-based paBugs web application (2.0 Beta 3 and earlier); the vulnerability is a SQL injection in main.php that allows an attacker to manipulate the database by supplying a crafted cid value to index.php. The underlying cause is an inadequate sanitization/vali...