cbcvebase.

Syscp Team Syscp vulnerabilities

4 known vulnerabilities affecting syscp_team/syscp.

Total CVEs
4
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
HIGH4

Vulnerabilities

Page 1 of 1
CVE-2007-0849P4HIGHCVSS 7.2PoC≤ 1.2.152007-02-08
CVE-2007-0849 [HIGH] CVE-2007-0849: scripts/cronscript.php in SysCP 1.2.15 and earlier does not properly quote pathnames in user home di scripts/cronscript.php in SysCP 1.2.15 and earlier does not properly quote pathnames in user home directories, which allows local users to gain privileges by placing shell metacharacters in a directory name, and then using the control panel to protect this directory, a different vulnerability than CVE-2005-2568.
nvd
CVE-2007-0850P3HIGHCVSS 7.5v1.2.10v1.2.152007-02-08
CVE-2007-0850 [HIGH] CVE-2007-0850: scripts/cronscript.php in SysCP 1.2.15 and earlier includes and executes arbitrary PHP scripts that scripts/cronscript.php in SysCP 1.2.15 and earlier includes and executes arbitrary PHP scripts that are referenced by the panel_cronscript table in the SysCP database, which allows attackers with database write privileges to execute arbitrary code by constructing a PHP file and adding its filename to this table.
nvd
CVE-2005-2568P3HIGHCVSS 7.5v1.2.102005-08-16
CVE-2005-2568 [HIGH] CVE-2005-2568: Eval injection vulnerability in the template engine for SysCP 1.2.10 and earlier allows remote attac Eval injection vulnerability in the template engine for SysCP 1.2.10 and earlier allows remote attackers to execute arbitrary PHP code via a string containing the code within "{" and "}" (curly bracket) characters, which are processed by the PHP eval function.
nvd
CVE-2005-2567P4HIGHCVSS 7.5≤ 1.2.102005-08-16
CVE-2005-2567 [HIGH] CVE-2005-2567: PHP remote file inclusion vulnerability in SysCP 1.2.10 and earlier allows remote attackers to execu PHP remote file inclusion vulnerability in SysCP 1.2.10 and earlier allows remote attackers to execute arbitrary PHP code via the language parameter.
nvd
Syscp Team Syscp vulnerabilities | cvebase