Hamweather
by Hamweather
CVEs (2)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2006-5185 | 0.00 | — | 0.04 | Oct 10, 2006 | Eval injection vulnerability in Template.php in HAMweather 3.9.8.4 and earlier allows remote attackers to execute arbitrary code via a modified query string, which is supplied to an eval function call within the do_parse_code function. | |||
| CVE-2002-2356 | 0.00 | — | 0.01 | Dec 31, 2002 | HAMweather 2.x allows remote attackers to modify administrative settings and obtain sensitive information via a direct request to hwadmin.cgi. |
- CVE-2006-5185Oct 10, 2006risk 0.00cvss —epss 0.04
Eval injection vulnerability in Template.php in HAMweather 3.9.8.4 and earlier allows remote attackers to execute arbitrary code via a modified query string, which is supplied to an eval function call within the do_parse_code function.
- CVE-2002-2356Dec 31, 2002risk 0.00cvss —epss 0.01
HAMweather 2.x allows remote attackers to modify administrative settings and obtain sensitive information via a direct request to hwadmin.cgi.