VYPR

Free Directory Script

by Freedirectoryscript

CVEs (4)

  • CVE-2008-6305Feb 26, 2009
    risk 0.03cvss epss 0.02

    PHP remote file inclusion vulnerability in init.php in Free Directory Script 1.1.1, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the API_HOME_DIR parameter.

  • CVE-2008-5928Jan 21, 2009
    risk 0.03cvss epss 0.01

    SQL injection vulnerability in redir.php in Free Links Directory Script (FLDS) 1.2a allows remote attackers to execute arbitrary SQL commands via the id parameter.

  • CVE-2008-5779Dec 30, 2008
    risk 0.03cvss epss 0.01

    SQL injection vulnerability in lpro.php in Free Links Directory Script (FLDS) 1.2a allows remote attackers to execute arbitrary SQL commands via the id parameter.

  • CVE-2008-5778Dec 30, 2008
    risk 0.03cvss epss 0.01

    SQL injection vulnerability in report.php in Free Links Directory Script (FLDS) 1.2a allows remote attackers to execute arbitrary SQL commands via the linkid parameter.