Filtered by vendor Smartisoft
Subscriptions
Filtered by product Phplistpro
Subscriptions
Total
3 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2006-2323 | 1 Smartisoft | 1 Phplistpro | 2018-10-18 | N/A |
| Multiple PHP remote file inclusion vulnerabilities in SmartISoft phpListPro 2.01 and earlier allow remote attackers to execute arbitrary PHP code via a URL in the returnpath parameter in (1) editsite.php, (2) addsite.php, and (3) in.php. NOTE: The config.php vector is already covered by CVE-2006-1749. | ||||
| CVE-2006-1749 | 1 Smartisoft | 1 Phplistpro | 2018-10-18 | N/A |
| PHP remote file inclusion vulnerability in config.php in phpListPro 2.0 and earlier allows remote attackers to execute arbitrary PHP code via the returnpath parameter. NOTE: this issue was later reported to affect 2.01 as well. | ||||
| CVE-2006-2523 | 1 Smartisoft | 1 Phplistpro | 2017-10-19 | N/A |
| PHP remote file inclusion vulnerability in config.php in phpListPro 2.0.1 and earlier, with magic_quotes_gpc disabled, allows remote attackers to execute arbitrary PHP code via a URL in the Language cookie. | ||||
Page 1 of 1.