Show filters
5 Total Results
Displaying 1-5 of 5
Sort by:
Attacker Value
Unknown
CVE-2008-5936
Disclosure Date: January 22, 2009 (last updated October 04, 2023)
front-end/edit.php in mini-pub 0.3 and earlier allows remote attackers to read files and obtain PHP source code via a filename in the sFileName parameter.
0
Attacker Value
Unknown
CVE-2008-5883
Disclosure Date: January 12, 2009 (last updated October 04, 2023)
Absolute path traversal vulnerability in front-end/dir.php in mini-pub 0.3 and earlier allows remote attackers to list arbitrary directories via a full pathname in the sDir parameter.
0
Attacker Value
Unknown
CVE-2008-5580
Disclosure Date: December 15, 2008 (last updated October 04, 2023)
mini-pub.php/front-end/cat.php in mini-pub 0.3 allows remote attackers to execute arbitrary commands via shell metacharacters in the sFileName argument.
0
Attacker Value
Unknown
CVE-2008-5579
Disclosure Date: December 15, 2008 (last updated October 04, 2023)
Absolute path traversal vulnerability in mini-pub.php/front-end/cat.php in mini-pub 0.3 allows remote attackers to read arbitrary files via a full pathname in the sFileName parameter.
0
Attacker Value
Unknown
CVE-2008-5581
Disclosure Date: December 15, 2008 (last updated October 04, 2023)
PHP remote file inclusion vulnerability in mini-pub.php/front-end/img.php in mini-pub 0.3 allows remote attackers to execute arbitrary PHP code via a URL in the sFileName parameter.
0
