W Agora
by W Agora
CVEs (22)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2004-1565 | 0.00 | — | 0.02 | Dec 31, 2004 | list.php in w-Agora 4.1.6a allows remote attackers to reveal the full path via a crafted HTTP request, possibly involving a malformed id parameter. | |||
| CVE-2002-2128 | 0.00 | — | 0.00 | Dec 31, 2002 | editform.php in w-Agora 4.1.5 allows local users to execute arbitrary PHP code via .. (dot dot) sequences in the file parameter. |
- CVE-2004-1565Dec 31, 2004risk 0.00cvss —epss 0.02
list.php in w-Agora 4.1.6a allows remote attackers to reveal the full path via a crafted HTTP request, possibly involving a malformed id parameter.
- CVE-2002-2128Dec 31, 2002risk 0.00cvss —epss 0.00
editform.php in w-Agora 4.1.5 allows local users to execute arbitrary PHP code via .. (dot dot) sequences in the file parameter.
Page 2 of 2