Vulnerabilities (CVE)

Vendor filter

X10media Subscribe

Product filter

X10 Automatic Mp3 Script Subscribe

Filter

1 total CVE
CVE Vendors Products Updated CVSS
CVE-2008-6960 1 X10media 1 X10 Automatic Mp3 Script 2017-09-29 5.0
download.php in X10media x10 Automatic Mp3 Search Engine Script 1.5.5 through 1.6 allows remote attackers to read arbitrary files via an encoded url parameter, as demonstrated by obtaining database credentials from includes/constants.php.