Avatic Aardvark Topsites Php — known CVE vulnerabilities
Every CVE whose affected-product data names Avatic Aardvark Topsites Php, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (7)
CVE-2007-1844 — CVSS 7.5 (high): Multiple PHP remote file inclusion vulnerabilities in Aardvark Topsites PHP 5 allow remote attackers to execute arbitrary PHP code via a…
CVE-2006-7026 — CVSS 6.8 (medium): PHP remote file inclusion vulnerability in sources/join.php in Aardvark Topsites PHP 4.2.2 and earlier, when register_globals is enabled…
CVE-2006-2149 — CVSS 6.4 (medium): PHP remote file inclusion vulnerability in sources/lostpw.php in Aardvark Topsites PHP 4.2.2 and earlier, when register_globals is enabled…
CVE-2009-2304 — CVSS 5.0 (medium): index.php in Aardvark Topsites PHP 5.2.0 and earlier allows remote attackers to obtain sensitive information via a nonexistent account name…
CVE-2009-2303 — CVSS 5.0 (medium): index.php in Aardvark Topsites PHP 5.2.1 and earlier allows remote attackers to obtain sensitive information via a negative integer value…
CVE-2009-2302 — CVSS 4.3 (medium): Cross-site scripting (XSS) vulnerability in index.php in Aardvark Topsites PHP 5.2.0 and earlier allows remote attackers to inject…
CVE-2010-4097 — CVSS 4.3 (medium): Multiple cross-site scripting (XSS) vulnerabilities in index.php in Aardvark Topsites PHP 5.2.0 and 5.2.1 allow remote attackers to inject…