Wordsmith vulnerabilities
2 known vulnerabilities affecting wordsmith/wordsmith.
Total CVEs
2
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
MEDIUM2
Vulnerabilities
Page 1 of 1
CVE-2007-5102P3MEDIUMCVSS 6.8PoCv1.0_rc12007-09-26
CVE-2007-5102 [MEDIUM] CWE-94 CVE-2007-5102: PHP remote file inclusion vulnerability in config.inc.php in Wordsmith 1.0 RC1, when register_global
PHP remote file inclusion vulnerability in config.inc.php in Wordsmith 1.0 RC1, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the _path parameter.
nvd
CVE-2007-5103P4MEDIUMCVSS 6.8v1.0_rc12007-09-26
CVE-2007-5103 [MEDIUM] CWE-22 CVE-2007-5103: Directory traversal vulnerability in config.inc.php in Wordsmith 1.0 RC1, when register_globals is e
Directory traversal vulnerability in config.inc.php in Wordsmith 1.0 RC1, when register_globals is enabled, allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the _path parameter.
nvd