VYPR

Kgb

by Kgb Project

CVEs (3)

  • CVE-2007-0337Jan 18, 2007
    risk 0.03cvss epss 0.03

    Directory traversal vulnerability in sesskglogadmin.php in KGB 1.9 and earlier allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the skinnn parameter, as demonstrated by invoking kg.php with a postek parameter containing PHP code, which…

  • CVE-2006-5115Oct 3, 2006
    risk 0.03cvss epss 0.02

    Directory traversal vulnerability in kgcall.php in KGB 1.87 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the engine parameter, as demonstrated by uploading a file containing PHP code with an image/jpeg content type, and then…

  • CVE-2015-1192Jan 21, 2015
    risk 0.00cvss epss 0.02

    Absolute path traversal vulnerability in kgb 1.0b4 allows remote attackers to write to arbitrary files via a full pathname in a crafted archive.