Cynox Cyphor vulnerabilities
2 known vulnerabilities affecting cynox/cyphor.
Total CVEs
2
CISA KEV
0
Public exploits
2
Exploited in wild
0
Severity breakdown
HIGH1MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2005-3575P3HIGHCVSS 7.5PoC≤ 0.192005-11-16
CVE-2005-3575 [HIGH] CVE-2005-3575: SQL injection vulnerability in show.php in Cyphor 0.19 and earlier allows remote attackers to execut
SQL injection vulnerability in show.php in Cyphor 0.19 and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter.
nvd
CVE-2005-3236P3MEDIUMCVSS 6.8PoCv0.192005-10-14
CVE-2005-3236 [MEDIUM] CVE-2005-3236: Multiple SQL injection vulnerabilities in Cyphor 0.19 allow remote attackers to execute arbitrary SQ
Multiple SQL injection vulnerabilities in Cyphor 0.19 allow remote attackers to execute arbitrary SQL and obtain administrative access via (1) the fid parameter of newmsg.php, which can enable XSS attacks when the SQL syntax is invalid or (2) the nick parameter of lostpwd.php.
nvd