Show filters
3 Total Results
Displaying 1-3 of 3
Sort by:
Attacker Value
Unknown
CVE-2008-0714
Disclosure Date: February 12, 2008 (last updated October 04, 2023)
SQL injection vulnerability in users.php in Mihalism Multi Host allows remote attackers to execute arbitrary SQL commands via the username parameter in a lost_password_go action.
0
Attacker Value
Unknown
CVE-2007-6653
Disclosure Date: January 04, 2008 (last updated October 04, 2023)
Directory traversal vulnerability in download.php in Mihalism Multi Host 2.0.7 allows remote attackers to read arbitrary files via a .. (dot dot) in the file parameter.
0
Attacker Value
Unknown
CVE-2007-6657
Disclosure Date: January 04, 2008 (last updated October 04, 2023)
PHP remote file inclusion vulnerability in source/includes/load_forum.php in Mihalism Multi Forum Host 3.0.x and earlier allows remote attackers to execute arbitrary PHP code via a URL in the mfh_root_path parameter.
0
