VYPR

Devilz Clanportal

by Devilz Clanportal

CVEs (6)

  • CVE-2012-0906Jan 20, 2012
    risk 0.03cvss epss 0.01

    SQL injection vulnerability in the Moviebase addon for deV!L'z Clanportal (DZCP) 1.5.5 allows remote attackers to execute arbitrary SQL commands via the id parameter in a showkat action to index.php.

  • CVE-2010-0966Mar 16, 2010
    risk 0.03cvss epss 0.02

    PHP remote file inclusion vulnerability in inc/config.php in deV!L`z Clanportal (DZCP) 1.5.2, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the basePath parameter.

  • CVE-2007-1167Mar 2, 2007
    risk 0.03cvss epss 0.04

    inc/filebrowser/browser.php in deV!L`z Clanportal (DZCP) 1.4.5 and earlier allows remote attackers to obtain MySQL data via the inc/mysql.php value of the file parameter.

  • CVE-2006-6338Dec 7, 2006
    risk 0.03cvss epss 0.03

    Unrestricted file upload vulnerability in upload/index.php in deV!L`z Clanportal (DZCP) before 1.3.6.1 allows remote attackers to upload and execute arbitrary .php files by embedding PHP code in a JPEG or GIF file that is uploaded to inc/images/uploads/userpics/.

  • CVE-2006-6339Dec 7, 2006
    risk 0.03cvss epss 0.01

    SQL injection vulnerability in sites/index.php in deV!L`z Clanportal (DZCP) before 1.3.6.1 allows remote attackers to execute arbitrary SQL commands via the show element in a GET request.

  • CVE-2006-3347Jul 3, 2006
    risk 0.03cvss epss 0.01

    SQL injection vulnerability in index.php in deV!Lz Clanportal DZCP 1.3.4 allows remote attackers to execute arbitrary SQL commands via the id parameter.