| Max CVSS | 10.0 | Min CVSS | 7.5 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2007-2777 | 7.5 |
Unrestricted file upload vulnerability in admin/addsptemplate.php in AlstraSoft Template Seller Pro 3.25 and earlier allows remote attackers to execute arbitrary PHP code via an arbitrary .php filename in the zip parameter, which is created under spt
|
11-10-2017 - 01:32 | 21-05-2007 - 23:30 | |
| CVE-2007-2776 | 10.0 |
AlstraSoft Template Seller Pro 3.25 and earlier sends a redirect to the web browser but does not exit when administrative credentials are missing, which allows remote attackers to inject a credential variable setting and obtain administrative access
|
11-10-2017 - 01:32 | 21-05-2007 - 23:30 |