Vulnerabilities (CVE)

Filtered by vendor China-on-site Subscribe
Filtered by product Flexphpdirectory
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2008-6750 1 China-on-site 1 Flexphpdirectory 2024-11-21 6.8 MEDIUM N/A
Unrestricted file upload vulnerability in add.php in FlexPHPDirectory 0.0.1 allows remote attackers to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in photo/.
CVE-2008-6749 1 China-on-site 1 Flexphpdirectory 2024-11-21 6.8 MEDIUM N/A
Multiple SQL injection vulnerabilities in admin/usercheck.php in FlexPHPDirectory 0.0.1, when magic_quotes_gpc is disabled, allow remote attackers to execute arbitrary SQL commands via the (1) checkuser and (2) checkpass parameters.