Trex

#11950of 53,619
22.9Total CVSS
Vulnerabilities · 4
Medium
3
High
1
PT-2007-3701
5.0
2007-04-30
Webspell · Webspell · CVE-2007-2368
**Name of the Vulnerable Software and Affected Versions** WebSPELL versions 4.01.02 and earlier **Description** The issue allows remote attackers to read arbitrary files via the `file` parameter in the picture.php script. **Recommendations** For WebSPELL versions 4.01.02 and earlier, consider restricting access to the picture.php script until a patch is available. As a temporary workaround, avoid using the `file` parameter in the picture.php script to minimize the risk of exploitation.
PT-2007-3702
5.0
2007-04-30
Php · Php · CVE-2007-2369
**Name of the Vulnerable Software and Affected Versions** WebSPELL versions 4.01.02 and earlier **Description** The issue allows remote attackers to read arbitrary files via a .. (dot dot) in the `id` parameter of the picture.php file when using PHP before 4.3.0. **Recommendations** For WebSPELL versions 4.01.02 and earlier, consider updating PHP to version 4.3.0 or later to mitigate the risk of exploitation. As a temporary workaround, restrict access to the picture.php file until a patch is available. Avoid using the `id` parameter in the picture.php file until the issue is resolved.
PT-2006-5878
7.5
2006-10-02
Lappy512 · Lappy512 Php Krazy Image Host Script · CVE-2006-5140
**Name of the Vulnerable Software and Affected Versions** Lappy512 PHP Krazy Image Host Script (phpkimagehost) version 0.7a **Description** The issue allows remote attackers to execute arbitrary SQL commands. This is achieved via the `id` parameter in the display.php file. **Recommendations** For version 0.7a, avoid using the `id` parameter in the display.php file until the issue is resolved. As a temporary workaround, consider restricting access to the display.php file to minimize the risk of exploitation.
PT-2006-5557
5.4
2006-09-14
Webspell · Webspell · CVE-2006-4782
**Name of the Vulnerable Software and Affected Versions** WebSPELL versions 4.01.01 and earlier **Description** The issue allows remote attackers to bypass authentication and gain sensitive information stored in the database. This is achieved by modifying the `userID` parameter in a write action to the "admin/database.php" endpoint when `register globals` is enabled. **Recommendations** For WebSPELL versions 4.01.01 and earlier, consider disabling the `register globals` setting to prevent exploitation. Additionally, restrict access to the "admin/database.php" endpoint until a fix is available. Avoid using the `userID` parameter in the affected endpoint until the issue is resolved.