Vulnerabilities (CVE)

Filtered by vendor Pehepe Subscribe

Filtered by product Membership Management System

Total 2 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2006-1021	1 Pehepe	2 Membership Management System, Uyelik Sistemi	2024-02-04	4.3 MEDIUM	N/A
Cross-site scripting (XSS) vulnerability in sol_menu.php in PeHePe Uyelik Sistemi (aka PeHePe MemberShip Management System) 3 allows remote attackers to inject arbitrary web script or HTML via the kuladi parameter ($kul_adi variable).
CVE-2006-1022	1 Pehepe	1 Membership Management System	2024-02-04	5.0 MEDIUM	N/A
PHP remote file include vulnerability in sol_menu.php in PeHePe Uyelik Sistemi (aka PeHePe MemberShip Management System) 3 allows remote attackers to include and execute arbitrary PHP code via a URL in the uye_klasor parameter, along with a misafir[] parameter that is set to UYE_SEVIYE.