Filtered by vendor Phpaddedit
Subscriptions
Filtered by product Phpaddedit
Subscriptions
Total
2 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2008-6581 | 1 Phpaddedit | 1 Phpaddedit | 2017-09-29 | N/A |
| login.php in PhpAddEdit 1.3 allows remote attackers to bypass authentication and gain administrative access by setting the addedit cookie parameter. | ||||
| CVE-2008-6313 | 1 Phpaddedit | 1 Phpaddedit | 2017-09-29 | N/A |
| Directory traversal vulnerability in addedit-render.php in phpAddEdit 1.3, when magic_quotes_gpc is disabled, allows remote attackers to include and execute arbitrary local files via a URL in the editform parameter. NOTE: PHP remote file inclusion attacks are also likely. | ||||
Page 1 of 1.