All Enthusiast Inc Reviewpost Php Pro vulnerabilities
2 known vulnerabilities affecting all_enthusiast_inc/reviewpost_php_pro.
Total CVEs
2
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
HIGH2
Vulnerabilities
Page 1 of 1
CVE-2004-2175P3HIGHCVSS 7.5PoCv2.5v2.5.12004-12-31
CVE-2004-2175 [HIGH] CVE-2004-2175: Multiple SQL injection vulnerabilities in ReviewPost PHP Pro allow remote attackers to execute arbit
Multiple SQL injection vulnerabilities in ReviewPost PHP Pro allow remote attackers to execute arbitrary SQL commands via the (1) product parameter to showproduct.php or (2) cat parameter to showcat.php.
nvd
CVE-2006-4864P3HIGHCVSS 7.5v2.52006-09-19
CVE-2006-4864 [HIGH] CVE-2006-4864: PHP remote file inclusion vulnerability in index.php in All Enthusiast ReviewPost 2.5 allows remote
PHP remote file inclusion vulnerability in index.php in All Enthusiast ReviewPost 2.5 allows remote attackers to execute arbitrary PHP code via a URL in the RP_PATH parameter.
nvd