Scribe

scribe

3 CVEs • 1 product

Products (1)

Click to collapse

Toggle

CVEs (3)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2008-0822 1Scribe 1Scribe Apr 23, 2026 Feb 19, 2008 N/A· v4 N/A· v3 3.6 LOW· v2 Directory traversal vulnerability in index.php in Scribe 0.2 allows remote attackers to read arbitrary local files via a .. (dot dot) in the page parameter.
CVE-2007-5823 1Scribe 1Scribe Apr 23, 2026 Nov 5, 2007 N/A· v4 N/A· v3 7.5 HIGH· v2 Directory traversal vulnerability in forum.php in Ben Ng Scribe 0.2 and earlier allows remote attackers to create or overwrite arbitrary files via a .. (dot dot) in the username parameter in a Register action.
CVE-2007-5822 1Scribe 1Scribe Apr 23, 2026 Nov 5, 2007 N/A· v4 N/A· v3 7.5 HIGH· v2 Direct static code injection vulnerability in forum.php in Ben Ng Scribe 0.2 and earlier allows remote attackers to inject arbitrary PHP code into a certain file in regged/ via the username parameter in a Register action...Show more Direct static code injection vulnerability in forum.php in Ben Ng Scribe 0.2 and earlier allows remote attackers to inject arbitrary PHP code into a certain file in regged/ via the username parameter in a Register action, possibly related to the register function in forumfunctions.php.Show less