Djayp Phpmysport vulnerabilities
2 known vulnerabilities affecting djayp/phpmysport.
Total CVEs
2
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
MEDIUM2
Vulnerabilities
Page 1 of 1
CVE-2010-1109P3MEDIUMCVSS 6.8PoCv1.42010-03-25
CVE-2010-1109 [MEDIUM] CWE-89 CVE-2010-1109: Multiple SQL injection vulnerabilities in index.php in phpMySport 1.4, when magic_quotes_gpc is disa
Multiple SQL injection vulnerabilities in index.php in phpMySport 1.4, when magic_quotes_gpc is disabled, allow remote attackers to execute arbitrary SQL commands via the (1) v2 parameter in a member view action, (2) v1 parameter in a news action, (3) v1 parameter in an information action, (4) v2 parameter in a team view action, (5) v2 parameter in a c
nvd
CVE-2010-1110P4MEDIUMCVSS 5.0v1.42010-03-25
CVE-2010-1110 [MEDIUM] CWE-22 CVE-2010-1110: Directory traversal vulnerability in index.php in phpMySport 1.4 allows remote attackers to list arb
Directory traversal vulnerability in index.php in phpMySport 1.4 allows remote attackers to list arbitrary directories via a .. (dot dot) in the current_folder parameter.
nvd