Vulnerabilities (CVE)

Filtered by vendor Phpprobid Subscribe
Total 4 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2009-3336 1 Phpprobid 1 Php Pro Bid 2024-11-21 7.5 HIGH N/A
SQL injection vulnerability in auction_details.php in PHP Pro Bid allows remote attackers to execute arbitrary SQL commands via the auction_id parameter.
CVE-2009-0970 1 Phpprobid 1 Php Pro Bid 2024-11-21 6.8 MEDIUM N/A
PHP remote file inclusion vulnerability in includes/class_image.php in PHP Pro Bid 6.05, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the fileExtension parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
CVE-2008-6043 1 Phpprobid 1 Php Pro Bid 2024-11-21 7.5 HIGH N/A
Multiple SQL injection vulnerabilities in PHP Pro Bid (PPB) 6.04 allow remote attackers to execute arbitrary SQL commands via the (1) order_field and (2) order_type parameters to categories.php and unspecified other components. NOTE: some of these details are obtained from third party information.
CVE-2007-0758 1 Phpprobid 1 Phpprobid 2024-11-21 7.5 HIGH N/A
PHP remote file inclusion vulnerability in lang.php in PHPProbid 5.24 allows remote attackers to execute arbitrary PHP code via a URL in the SRC attribute of an HTML element in the lang parameter. NOTE: The provenance of this information is unknown; the details are obtained solely from third party information.