VYPR

Pslash

by Derek Leung

CVEs (3)

  • CVE-2006-4373Aug 26, 2006
    risk 0.03cvss epss 0.03

    PHP remote file inclusion vulnerability in modules/visitors2/include/config.inc.php in pSlash 0.70 allows remote attackers to execute arbitrary PHP code via a URL in the lvc_include_dir parameter.

  • CVE-2007-5014Sep 20, 2007
    risk 0.00cvss epss 0.01

    Multiple PHP remote file inclusion vulnerabilities in pSlash 0.70 allow remote attackers to execute arbitrary PHP code via a URL in (1) the lvc_admin_dir parameter to modules/visitors2/admin/view-archiver.inc.php or (2) the lvc_include_dir parameter to…

  • CVE-2001-1235Oct 2, 2001
    risk 0.00cvss epss 0.05

    pSlash PHP script 0.7 and earlier allows remote attackers to execute arbitrary code by including files from remote web sites, using an HTTP request that modifies the includedir variable.