Agtc Websolutions Php-Agtc Membership System vulnerabilities
2 known vulnerabilities affecting agtc_websolutions/php-agtc_membership_system.
Total CVEs
2
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
HIGH1MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2007-5752P3HIGHCVSS 7.5PoCv1.1a2007-10-31
CVE-2007-5752 [HIGH] CWE-287 CVE-2007-5752: adduser.php in PHP-AGTC Membership (AGTC-Membership) System 1.1a does not require authentication, wh
adduser.php in PHP-AGTC Membership (AGTC-Membership) System 1.1a does not require authentication, which allows remote attackers to create accounts via a modified form, as demonstrated by an account with admin (userlevel 4) privileges.
nvd
CVE-2006-2687P4MEDIUMCVSS 4.9v1.1a2006-05-31
CVE-2006-2687 [MEDIUM] CVE-2006-2687: Cross-site scripting (XSS) vulnerability in adduser.php in PHP-AGTC Membership System 1.1a and earli
Cross-site scripting (XSS) vulnerability in adduser.php in PHP-AGTC Membership System 1.1a and earlier allows remote attackers to inject arbitrary web script or HTML via the email address (useremail parameter).
nvd