VYPR

Esfaq

by Editeurscripts

CVEs (3)

  • CVE-2008-6016Jan 30, 2009
    risk 0.03cvss epss 0.01

    SQL injection vulnerability in questions.php in EsFaq 2.0 allows remote attackers to execute arbitrary SQL commands via the cid parameter, a different vector than CVE-2008-3952. NOTE: the provenance of this information is unknown; the details are obtained solely from third…

  • CVE-2008-3952Sep 11, 2008
    risk 0.03cvss epss 0.01

    SQL injection vulnerability in questions.php in EsFaq 2.0 allows remote attackers to execute arbitrary SQL commands via the idcat parameter.

  • CVE-2008-6015Jan 30, 2009
    risk 0.00cvss epss 0.01

    Multiple SQL injection vulnerabilities in search.php in EsFaq 2.0 allow remote attackers to execute arbitrary SQL commands via the (1) keywords and (2) cat parameters. NOTE: the provenance of this information is unknown; the details are obtained solely from third party…