Sign in Subscribe

← All vendors

Vendor

Webtext

Products

1

CVEs

1

Across products

1

Status

Private

Products

1

Webtext
1 CVE

Recent CVEs

1

CVE	Sev	Risk	CVSS	EPSS	KEV	Published	Description
CVE-2006-6856		0.04	—	0.07		Dec 31, 2006	Direct static code injection vulnerability in WebText CMS 0.4.5.2 and earlier allows remote attackers to inject arbitrary PHP code into a script in wt/users/ via the im parameter during a profile edit (edycja) operation, which is then executed via a direct request for this script.

CVE-2006-6856Dec 31, 2006
risk 0.04cvss —epss 0.07
Direct static code injection vulnerability in WebText CMS 0.4.5.2 and earlier allows remote attackers to inject arbitrary PHP code into a script in wt/users/ via the im parameter during a profile edit (edycja) operation, which is then executed via a direct request for this script.