Identifier
|
Related Record |
Severity
|
Date Published
|
Description | Versions Affected |
---|---|---|---|---|---|
CVE-2018-0606 | BDSA-2018-2028 | High | Jun 26, 2018 | SQL injection vulnerability in the Pixelpost v1.7.3 and earlier allows remote authenticated attackers to execute arbitrary SQL commands via unspecified more... |
1.7.3
|
CVE-2018-0605 | BDSA-2018-2087 | Medium | Jun 26, 2018 | Cross-site scripting vulnerability in Pixelpost v1.7.3 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vecto more... |
1.7.3, v1.7.2, 1.7.1, 1.5, 1.4.3
|
CVE-2018-0604 | BDSA-2018-2069 | High | Jun 26, 2018 | Pixelpost v1.7.3 and earlier allows remote code execution via unspecified vectors. |
1.7.3
|
CVE-2011-3792 | Sep 24, 2011 | Pixelpost 1.7.3 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an more... |
1.7.3
|
||
CVE-2011-1100 | Feb 25, 2011 | Multiple SQL injection vulnerabilities in admin/index.php in Pixelpost 1.7.3 allow remote authenticated users to execute arbitrary SQL commands via the more... |
1.7.3
|
||
CVE-2010-3305 | High | Nov 12, 2019 | Cross-site request forgery (CSRF) vulnerability in pixelpost 1.7.3 could allow remote attackers to change the admin password. |
1.7.3
|