← Back

Modules Controller

modules_controller

Vendor: Webbiscuits • 2 CVEs

CVEs (2)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2008-6139
1Webbiscuits
1Modules Controller
Apr 23, 2026
Feb 14, 2009
N/A· v4
N/A· v3
5.0 MEDIUM· v2
Directory traversal vulnerability in faqsupport/wce.download.php in WebBiscuits Modules Controller 1.1 allows remote attackers to read arbitrary files via a .. (dot dot) in the download parameter.
CVE-2008-6138
1Webbiscuits
1Modules Controller
Apr 23, 2026
Feb 14, 2009
N/A· v4
N/A· v3
7.5 HIGH· v2
PHP remote file inclusion vulnerability in adminhead.php in WebBiscuits Modules Controller 1.1 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the path[docroot] parameter.