Vulnerabilities (CVE)

Filtered by vendor Phpmyprofiler Subscribe
Filtered by product Phpmyprofiler
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2007-5114 1 Phpmyprofiler 1 Phpmyprofiler 2024-08-07 6.8 MEDIUM N/A
** DISPUTED ** PHP remote file inclusion vulnerability in include/plugin/block.t.php in Peter Schmidt phpmyProfiler 0.9.6b allows remote attackers to execute arbitrary PHP code via a URL in the pmp_rel_path parameter. NOTE: this issue is disputed by CVE because the applicable require_once is in a function that is not called on a direct request.
CVE-2006-5186 1 Phpmyprofiler 1 Phpmyprofiler 2024-02-04 5.1 MEDIUM N/A
PHP remote file inclusion vulnerability in functions.php in phpMyProfiler 0.9.6 and earlier, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the pmp_rel_path parameter.