Mywebcards Webcards vulnerabilities
2 known vulnerabilities affecting mywebcards/webcards.
Total CVEs
2
CISA KEV
0
Public exploits
2
Exploited in wild
0
Severity breakdown
HIGH1MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2008-4878P3HIGHCVSS 8.5PoC≤ 1.32008-11-01
CVE-2008-4878 [HIGH] CWE-20 CVE-2008-4878: Unrestricted file upload vulnerability in the "Add Image Macro" feature in WebCards 1.3 allows remot
Unrestricted file upload vulnerability in the "Add Image Macro" feature in WebCards 1.3 allows remote authenticated administrators to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the uploaded file.
nvd
CVE-2008-4877P3MEDIUMCVSS 6.8PoC≤ 1.32008-11-01
CVE-2008-4877 [MEDIUM] CWE-89 CVE-2008-4877: SQL injection vulnerability in admin.php in WebCards 1.3, when magic_quotes_gpc is disabled, allows
SQL injection vulnerability in admin.php in WebCards 1.3, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the user parameter. NOTE: some of these details are obtained from third party information.
nvd