VYPR

Stararticles

by Kalptaru Infotech

CVEs (2)

  • CVE-2008-7076Aug 25, 2009
    risk 0.03cvss epss 0.03

    Unrestricted file upload vulnerability in user.modify.profile.php in Kalptaru Infotech Ltd. Star Articles 6.0 allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension as a profile photo, then accessing it via a direct request…

  • CVE-2008-7075Aug 25, 2009
    risk 0.03cvss epss 0.02

    Multiple SQL injection vulnerabilities in Kalptaru Infotech Ltd. Star Articles 6.0 allow remote attackers to inject arbitrary SQL commands via (1) the subcatid parameter to article.list.php; or the artid parameter to (2) article.print.php, (3) article.comments.php, (4)…