VYPR

Progsys

by Boesch It

CVEs (2)

  • CVE-2006-4944Sep 23, 2006
    risk 0.03cvss epss 0.02

    PHP remote file inclusion vulnerability in includes/pear/Net/DNS/RR.php in ProgSys 0.151 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the phpdns_basedir parameter.

  • CVE-2006-5560Oct 27, 2006
    risk 0.00cvss epss 0.01

    Cross-site scripting (XSS) vulnerability in heading.php in Boesch ProgSys 0.151 and earlier allows remote attackers to inject arbitrary web script or HTML via the PATH_INFO to admin/index.php, and unspecified vectors related to certain other files. NOTE: some of these details…