Vulnerabilities (CVE)

Filtered by vendor Nitrotech Subscribe
Filtered by product Nitrotech
Total 3 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2008-5334 1 Nitrotech 1 Nitrotech 2024-11-21 10.0 HIGH N/A
PHP remote file inclusion vulnerability in includes/common.php in NitroTech 0.0.3a allows remote attackers to execute arbitrary PHP code via a URL in the root parameter.
CVE-2008-5333 1 Nitrotech 1 Nitrotech 2024-11-21 7.5 HIGH N/A
SQL injection vulnerability in members.php in NitroTech 0.0.3a allows remote attackers to execute arbitrary SQL commands via the id parameter.
CVE-2006-6938 1 Nitrotech 1 Nitrotech 2024-11-21 5.0 MEDIUM N/A
Directory traversal vulnerability in includes/common.php in NitroTech 0.0.3a, as distributed before 2006, allows remote attackers to include arbitrary files via ".." sequences in the root parameter.