Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

  1. Reconshell
  2. Vulnerabilities (CVE)
Filtered by vendor Vivaprograms Subscribe
Filtered by product Infinity Script
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2009-3949 1 Vivaprograms 1 Infinity Script 2017-09-18 7.5 HIGH N/A
cp/profile.php in VivaPrograms Infinity 2.0.5 and earlier does not require administrative authentication for the donewauthor action, which allows remote attackers to create administrative accounts via the name, password, and conf_password parameters.