Sign in Subscribe

← All vendors

Vendor

Articlefriendly

Sign in to watch

Products

1

CVEs

3

Across products

3

Status

Private

Products

1

Article Friendly
3 CVEs

Recent CVEs

3

CVE	Sev	Risk	CVSS	EPSS	KEV	Published	Description
CVE-2008-3670		0.03	—	0.01		Aug 13, 2008	SQL injection vulnerability in authordetail.php in Article Friendly Pro allows remote attackers to execute arbitrary SQL commands via the autid parameter.
CVE-2008-3649		0.03	—	0.01		Aug 13, 2008	SQL injection vulnerability in categorydetail.php in Article Friendly Standard allows remote attackers to execute arbitrary SQL commands via the Cat parameter.
CVE-2010-2136		0.00	—	0.00		Jun 2, 2010	Directory traversal vulnerability in admin/index.php in Article Friendly, when magic_quotes_gpc is disabled, allows remote attackers to read arbitrary files via a .. (dot dot) in the filename parameter.