← Back

Simple Plantilla Php

simple_plantilla_php

Vendor: Cromosoft • 2 CVEs

CVEs (2)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2007-1139
1Cromosoft
1Simple Plantilla Php
Apr 23, 2026
Mar 2, 2007
N/A· v4
N/A· v3
10.0 HIGH· v2
Unrestricted file upload vulnerability in Cromosoft Simple Plantilla PHP (SPP) allows remote attackers to upload arbitrary scripts via a filename with a double extension.
CVE-2007-1138
1Cromosoft
1Simple Plantilla Php
Apr 23, 2026
Mar 2, 2007
N/A· v4
N/A· v3
5.0 MEDIUM· v2
Absolute path traversal vulnerability in list_main_pages.php in Cromosoft Simple Plantilla PHP (SPP) allows remote attackers to list arbitrary directories, and read arbitrary files, via an absolute pathname in the nfolde...Show more
Absolute path traversal vulnerability in list_main_pages.php in Cromosoft Simple Plantilla PHP (SPP) allows remote attackers to list arbitrary directories, and read arbitrary files, via an absolute pathname in the nfolder parameter.Show less