Xzero Community Classifieds Security Vulnerabilities and Issues — Xzero Community Classifieds CVE List

Lucene search

Xzero ScriptsXzero Community Classifieds

3 matches found

CVE•added 2007/12/28 9:46 p.m.•41 views

CVE-2007-6567

Directory traversal vulnerability in index.php in XZero Community Classifieds 4.95.11 and earlier allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the pagename parameter in a page view action.

6.4CVSS7.1AI score0.06088EPSS

CVE•added 2007/12/28 9:46 p.m.•40 views

CVE-2007-6568

PHP remote file inclusion vulnerability in config.inc.php in XZero Community Classifieds 4.95.11 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the path_escape parameter.

7.5CVSS7.6AI score0.017EPSS

CVE•added 2007/12/28 9:46 p.m.•35 views

CVE-2007-6566

SQL injection vulnerability in post.php in XZero Community Classifieds 4.95.11 and earlier allows remote attackers to execute arbitrary SQL commands via the subcatid parameter to index.php.

7.5CVSS8.4AI score0.01034EPSS