2 matches found
CVE-2008-6848
CVE-2008-6848 affects phpGreetCards 3.7, specifically the code path in index.php. The vulnerability is an XSS via the category parameter in a select action, allowing remote attackers to inject arbitrary web script or HTML. The connected documents confirm the affected component and the underlying ...
CVE-2008-6849
CVE-2008-6849 describes an unrestricted file upload vulnerability in the PHP application phpGreetCards 3.7. The flaw is triggered in index.php, allowing remote attackers to upload a file with an executable extension and then access it via a link found in userfiles/number_shell.php, enabling arbit...