Vulnerabilities (CVE)

Filtered by vendor Dirk Bartley Subscribe
Filtered by product Nweb2fax
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2008-6669 1 Dirk Bartley 1 Nweb2fax 2024-11-21 7.5 HIGH N/A
viewrq.php in nweb2fax 0.2.7 and earlier allows remote attackers to execute arbitrary code via shell metacharacters in the var_filename parameter in a (1) tif or (2) pdf format action.
CVE-2008-6668 1 Dirk Bartley 1 Nweb2fax 2024-11-21 5.0 MEDIUM N/A
Multiple directory traversal vulnerabilities in nweb2fax 0.2.7 and earlier allow remote attackers to read arbitrary files via a .. (dot dot) in the (1) id parameter to comm.php and (2) var_filename parameter to viewrq.php.