Thomas Perez Tribisur vulnerabilities
2 known vulnerabilities affecting thomas_perez/tribisur.
Total CVEs
2
CISA KEV
0
Public exploits
2
Exploited in wild
0
Severity breakdown
HIGH1MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2008-0133P3HIGHCVSS 7.5PoC≤ 2.12008-01-08
CVE-2008-0133 [HIGH] CWE-89 CVE-2008-0133: Multiple SQL injection vulnerabilities in Tribisur 2.1 and earlier allow remote attackers to execute
Multiple SQL injection vulnerabilities in Tribisur 2.1 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) id parameter to cat_main.php and the (2) cat parameter to forum.php in a liste action.
nvd
CVE-2010-0958P3MEDIUMCVSS 6.8PoC≤ 2.1v2.02010-03-10
CVE-2010-0958 [MEDIUM] CWE-22 CVE-2010-0958: Directory traversal vulnerability in modules/hayoo/index.php in Tribisur 2.1, 2.0, and earlier, when
Directory traversal vulnerability in modules/hayoo/index.php in Tribisur 2.1, 2.0, and earlier, when magic_quotes_gpc is disabled, allows remote attackers to include and execute arbitrary files via directory traversal sequences in the theme parameter. NOTE: some of these details are obtained from third party information.
nvd