W2B Phpgreetcards vulnerabilities
2 known vulnerabilities affecting w2b/phpgreetcards.
Total CVEs
2
CISA KEV
0
Public exploits
2
Exploited in wild
0
Severity breakdown
MEDIUM2
Vulnerabilities
Page 1 of 1
CVE-2008-6849P3MEDIUMCVSS 6.8PoCv3.72009-07-07
CVE-2008-6849 [MEDIUM] CWE-94 CVE-2008-6849: Unrestricted file upload vulnerability in index.php in phpGreetCards 3.7 allows remote attackers to
Unrestricted file upload vulnerability in index.php in phpGreetCards 3.7 allows remote attackers to execute arbitrary PHP code by uploading a file with an executable extension, then accessing it via a via a link that is listed by userfiles/number_shell.php.
nvd
CVE-2008-6848P4MEDIUMCVSS 4.3PoCv3.72009-07-07
CVE-2008-6848 [MEDIUM] CWE-79 CVE-2008-6848: Cross-site scripting (XSS) vulnerability in index.php in phpGreetCards 3.7 allows remote attackers t
Cross-site scripting (XSS) vulnerability in index.php in phpGreetCards 3.7 allows remote attackers to inject arbitrary web script or HTML via the category parameter in a select action.
nvd