Dew-Code Dew-Newphplinks vulnerabilities
2 known vulnerabilities affecting dew-code/dew-newphplinks.
Total CVEs
2
CISA KEV
0
Public exploits
2
Exploited in wild
0
Severity breakdown
MEDIUM2
Vulnerabilities
Page 1 of 1
CVE-2009-1624P4MEDIUMCVSS 5.0PoCv2.02009-05-12
CVE-2009-1624 [MEDIUM] CWE-22 CVE-2009-1624: Directory traversal vulnerability in index.php in Dew-NewPHPLinks 2.0 allows remote attackers to rea
Directory traversal vulnerability in index.php in Dew-NewPHPLinks 2.0 allows remote attackers to read arbitrary files via a .. (dot dot) in the show parameter.
nvd
CVE-2009-1623P4MEDIUMCVSS 4.3PoCv2.02009-05-12
CVE-2009-1623 [MEDIUM] CWE-79 CVE-2009-1623: Cross-site scripting (XSS) vulnerability in index.php in Dew-NewPHPLinks 2.0 allows remote attackers
Cross-site scripting (XSS) vulnerability in index.php in Dew-NewPHPLinks 2.0 allows remote attackers to inject arbitrary web script or HTML via the PID parameter.
nvd