VYPR

6rbscript

by 6rbscript

CVEs (3)

  • CVE-2008-6454Mar 13, 2009
    risk 0.03cvss epss 0.01

    SQL injection vulnerability in section.php in 6rbScript 3.3 allows remote attackers to execute arbitrary SQL commands via the singerid parameter in a singers action.

  • CVE-2008-6453Mar 13, 2009
    risk 0.03cvss epss 0.02

    Directory traversal vulnerability in section.php in 6rbScript 3.3, when magic_quotes_gpc is disabled, allows remote attackers to read arbitrary files via a .. (dot dot) in the name parameter.

  • CVE-2008-4344Sep 30, 2008
    risk 0.03cvss epss 0.01

    SQL injection vulnerability in cat.php in 6rbScript allows remote attackers to execute arbitrary SQL commands via the CatID parameter.