VYPR
Vendor

Py Membres

Products
1
CVEs
4
Across products
4
Status
Private

Products

1

Recent CVEs

4
  • CVE-2010-1067Mar 23, 2010
    risk 0.03cvss epss 0.02

    E-membres 1.0 stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database via a direct request for db/bdEMembres.mdb.

  • CVE-2002-1884Dec 31, 2002
    risk 0.03cvss epss 0.03

    index.php in Py-Membres 3.1 allows remote attackers to log in as an administrator by setting the pymembs parameter to "admin".

  • CVE-2003-0751Oct 20, 2003
    risk 0.00cvss epss 0.01

    SQL injection vulnerability in pass_done.php for PY-Membres 4.2 and earlier allows remote attackers to execute arbitrary SQL queries via the email parameter.

  • CVE-2003-0750Oct 20, 2003
    risk 0.00cvss epss 0.02

    secure.php in PY-Membres 4.2 and earlier allows remote attackers to bypass authentication by setting the adminpy parameter.