📦

akocomment

Vendor: arthur_konze_webdesign

Actively Exploited 0 CISA KEV List

PoC / Exploits 0 Code Available

Total RCEs 0 Remote Access

Total CVEs 2 Total Indexed

Avg. EPSS 0.75% Exploit Prob.

Latest CVE CVE-2007-3573 Jul 05

Security Vulnerability Index

Page 1 / 1

6.8 CVSS

CVE-2007-3573

Multiple SQL injection vulnerabilities in akocomment allow remote attackers to execute arbitrary SQL commands via the (1) acparentid or (2) acitemid parameter to an unspecified component, different vectors than CVE-2006-1421.

EPSS: 0.54%

Severity: MEDIUM

Jul 05, 2007

7.5 CVSS

CVE-2006-4281

PHP remote file inclusion vulnerability in akocomments.php in AkoComment 1.1 module (com_akocomment) for Mambo 4.5 allows remote attackers to execute arbitrary PHP code via a URL in the mosConfig_absolute_path parameter.

EPSS: 0.89%

Severity: HIGH

Aug 21, 2006

5.1 CVSS

CVE-2006-1421

Multiple SQL injection vulnerabilities in akocomment.php in AkoComment 2.0 module for Mambo, with magic_quotes_gpc disabled, allow remote attackers to execute arbitrary SQL commands via the (1) acname or (2) contentid parameter.

EPSS: 0.82%

Severity: MEDIUM

Mar 28, 2006

Displaying 3 of 2 Total Entries

Total 1 Sections