Vulnerabilities (CVE)

Filtered by vendor Dzcp Subscribe
Filtered by product Dev\!l\'z Clanportal
Total 3 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2012-5000 2 Blueteck, Dzcp 2 Witze Addon, Dev\!l\'z Clanportal 2024-02-04 7.5 HIGH N/A
SQL injection vulnerability in jokes/index.php in the Witze addon 0.9 for deV!L'z Clanportal allows remote attackers to execute arbitrary SQL commands via the id parameter in a show action.
CVE-2010-0966 1 Dzcp 1 Dev\!l\'z Clanportal 2024-02-04 6.8 MEDIUM N/A
PHP remote file inclusion vulnerability in inc/config.php in deV!L`z Clanportal (DZCP) 1.5.2, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the basePath parameter.
CVE-2007-1167 1 Dzcp 1 Dev\!l\'z Clanportal 2024-02-04 5.0 MEDIUM N/A
inc/filebrowser/browser.php in deV!L`z Clanportal (DZCP) 1.4.5 and earlier allows remote attackers to obtain MySQL data via the inc/mysql.php value of the file parameter.