Virtual War@* Security Vulnerabilities and Issues — Virtual War@* CVE List

Lucene search

VwarVirtual War*

2 matches found

CVE•added 2007/08/31 12:17 a.m.•206 views

CVE-2007-4605

PHP remote file inclusion vulnerability in convert/mvcw.php in Virtual War (VWar) 1.5.0 R15 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the vwar_root parameter, a different vector than CVE-2006-1503, CVE-2006-1636, and CVE-2006-1747.

7.5CVSS7.2AI score0.08058EPSS

CVE•added 2007/04/26 9:19 p.m.•43 views

CVE-2007-2306

Multiple cross-site scripting (XSS) vulnerabilities in the Virtual War (VWar) 1.5.0 R15 and earlier module for PHP-Nuke, when register_globals is enabled, allow remote attackers to inject arbitrary web script or HTML via the (1) memberlist parameter to extra/login.php and the (2) title parameter to...

4.3CVSS5.9AI score0.00351EPSS