Summary
phpCommunity2 is prone to multiple input-validation vulnerabilities, including multiple directory-traversal issues and SQL-injection issues, and a cross-site scripting issue.
Exploiting these issues could allow an attacker to view arbitrary local files within the context of the webserver, steal cookie-based authentication credentials, compromise the application, access or modify data, or exploit latent vulnerabilities in the underlying database.
References
Updated on 2015-03-25
Severity
Classification
-
CVE CVE-2009-4884, CVE-2009-4885, CVE-2009-4886 -
CVSS Base Score: 6.8
AV:N/AC:M/Au:N/C:P/I:P/A:P
Related Vulnerabilities