Squiz Mysource Classic vulnerabilities
2 known vulnerabilities affecting squiz/mysource_classic.
Total CVEs
2
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
MEDIUM2
Vulnerabilities
Page 1 of 1
CVE-2006-4635P4MEDIUMCVSS 6.5≤ 2.14.62006-09-08
CVE-2006-4635 [MEDIUM] CVE-2006-4635: Unspecified vulnerability in MySource Classic 2.14.6, and possibly earlier, allows remote authentica
Unspecified vulnerability in MySource Classic 2.14.6, and possibly earlier, allows remote authenticated users, with superuser privileges, to inject arbitrary PHP code via unspecified vectors related to the Equation attribute in Web_Extensions - Notitia (I/II). NOTE: due to lack of details, it is not clear whether this issue is file inclusion, static code inje
nvd
CVE-2006-5036P4MEDIUMCVSS 6.8≤ 2.16.22006-09-27
CVE-2006-5036 [MEDIUM] CVE-2006-5036: MySource Matrix 3.8 and earlier, and MySource 2.x, allow remote attackers to use the application as
MySource Matrix 3.8 and earlier, and MySource 2.x, allow remote attackers to use the application as an HTTP proxy server via the sq_remote_page_url parameter to access arbitrary sites with the server's IP address and conduct cross-site scripting (XSS) attacks. NOTE: the researcher reports that "The vendor does not consider this a vulnerability.
nvd