Esyndicat Directory vulnerabilities
2 known vulnerabilities affecting esyndicat/esyndicat_directory.
Total CVEs
2
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
HIGH1MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2007-3811P3HIGHCVSS 7.5PoCv1.62007-07-17
CVE-2007-3811 [HIGH] CVE-2007-3811: Multiple SQL injection vulnerabilities in eSyndiCat allow remote attackers to execute arbitrary SQL
Multiple SQL injection vulnerabilities in eSyndiCat allow remote attackers to execute arbitrary SQL commands via (1) the id parameter to news.php or (2) the name parameter to page.php.
nvd
CVE-2006-2578P4MEDIUMCVSS 5.1v1.22006-05-24
CVE-2006-2578 [MEDIUM] CVE-2006-2578: admin/cron.php in eSyndicat Directory 1.2, when register_globals is enabled and magic_quotes_gpc is
admin/cron.php in eSyndicat Directory 1.2, when register_globals is enabled and magic_quotes_gpc is disabled, allows remote attackers to include arbitrary files and possibly execute arbitrary PHP code via a null-terminated value in the path_to_config parameter.
nvd