Allmyguests Project Allmyguests vulnerabilities
3 known vulnerabilities affecting allmyguests_project/allmyguests.
Total CVEs
3
CISA KEV
0
Public exploits
3
Exploited in wild
0
Severity breakdown
CRITICAL1HIGH2
Vulnerabilities
Page 1 of 1
CVE-2007-0172P3HIGHCVSS 7.5PoC≤ 0.32007-01-11
CVE-2007-0172 [HIGH] CVE-2007-0172: Multiple PHP remote file inclusion vulnerabilities in AllMyGuests 0.3.0 and earlier allow remote att
Multiple PHP remote file inclusion vulnerabilities in AllMyGuests 0.3.0 and earlier allow remote attackers to execute arbitrary PHP code via a URL in the AMG_serverpath parameter to (1) comments.php and (2) signin.php; and possibly via a URL in unspecified parameters to (3) include/submit.inc.php, (4) admin/index.php, (5) include/cm_submit.inc.php, and (6) inde
nvd
CVE-2006-4993P3HIGHCVSS 7.5PoC≤ 0.4.12006-09-26
CVE-2006-4993 [HIGH] CVE-2006-4993: Multiple PHP remote file inclusion vulnerabilities in AllMyGuests 0.4.1 and earlier allow remote att
Multiple PHP remote file inclusion vulnerabilities in AllMyGuests 0.4.1 and earlier allow remote attackers to execute arbitrary PHP code via a URL in the _AMGconfig[cfg_serverpath] parameter in (1) modules/AllMyGuests/signin.php (aka the Nuke module) and (2) AllMyGuests/signin.php (aka the standalone).
nvd
CVE-2004-0285P3CRITICALCVSS 9.8PoCv0.1.2v0.3+2 more2004-11-23
CVE-2004-0285 [CRITICAL] CWE-829 CVE-2004-0285: PHP remote file inclusion vulnerabilities in include/footer.inc.php in (1) AllMyVisitors, (2) AllMyL
PHP remote file inclusion vulnerabilities in include/footer.inc.php in (1) AllMyVisitors, (2) AllMyLinks, and (3) AllMyGuests allow remote attackers to execute arbitrary PHP code via a URL in the _AMVconfig[cfg_serverpath] parameter.
nvd