Exo Exophpdesk vulnerabilities
3 known vulnerabilities affecting exo/exophpdesk.
Total CVEs
3
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
HIGH1MEDIUM2
Vulnerabilities
Page 1 of 1
CVE-2007-0676P3MEDIUMCVSS 6.8PoCv1.2v1.2.12007-02-03
CVE-2007-0676 [MEDIUM] CVE-2007-0676: SQL injection vulnerability in faq.php in ExoPHPDesk 1.2.1 and earlier allows remote attackers to ex
SQL injection vulnerability in faq.php in ExoPHPDesk 1.2.1 and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter.
nvd
CVE-2007-5991P4HIGHCVSS 7.5v1.2.12007-11-15
CVE-2007-5991 [HIGH] CWE-89 CVE-2007-5991: SQL injection vulnerability in index.php in ExoPHPdesk allows remote attackers to execute arbitrary
SQL injection vulnerability in index.php in ExoPHPdesk allows remote attackers to execute arbitrary SQL commands via the user parameter in a profile fn action.
nvd
CVE-2007-5990P4MEDIUMCVSS 4.3v1.2.12007-11-15
CVE-2007-5990 [MEDIUM] CWE-79 CVE-2007-5990: Cross-site scripting (XSS) vulnerability in ExoPHPdesk allows remote attackers to inject arbitrary w
Cross-site scripting (XSS) vulnerability in ExoPHPdesk allows remote attackers to inject arbitrary web script or HTML via unspecified vectors in a user profile, possibly the (1) name and (2) website parameters to register.php.
nvd