Topper Toppermod vulnerabilities
2 known vulnerabilities affecting topper/toppermod.
Total CVEs
2
CISA KEV
0
Public exploits
2
Exploited in wild
0
Severity breakdown
MEDIUM2
Vulnerabilities
Page 1 of 1
CVE-2008-1553P3MEDIUMCVSS 6.8PoCv1.02008-03-31
CVE-2008-1553 [MEDIUM] CWE-22 CVE-2008-1553: Directory traversal vulnerability in mod.php in TopperMod 1.0 allows remote attackers to include and
Directory traversal vulnerability in mod.php in TopperMod 1.0 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the to parameter.
nvd
CVE-2008-1554P3MEDIUMCVSS 6.8PoCv2.02008-03-31
CVE-2008-1554 [MEDIUM] CWE-89 CVE-2008-1554: SQL injection vulnerability in account/index.php in TopperMod 2.0, when magic_quotes_gpc is disabled
SQL injection vulnerability in account/index.php in TopperMod 2.0, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via a non-alphanumeric first character the localita parameter, which bypasses a protection mechanism.
nvd