Known Vulnerabilities for products from Phpkobo

Listed below are 17 of the newest known vulnerabilities associated with the vendor "Phpkobo".

These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.

Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.

Known Vulnerabilities

CVE Shortened Description Severity Publish Date Last Modified
CVE-2023-41453 json Cross Site Scripting vulnerability in phpkobo AjaxNewTicker v.1.0.5 allows a remote attacker to execute arbitrary code via a ... 6.1 - MEDIUM 2023-09-27 2023-09-28
CVE-2023-41452 json Cross Site Request Forgery vulnerability in phpkobo AjaxNewTicker v.1.0.5 allows a remote attacker to execute arbitrary code ... 8.8 - HIGH 2023-09-27 2023-09-28
CVE-2023-41451 json Cross Site Scripting vulnerability in phpkobo AjaxNewTicker v.1.0.5 allows a remote attacker to execute arbitrary code via a ... 6.1 - MEDIUM 2023-09-27 2023-09-28
CVE-2023-41450 json An issue in phpkobo AjaxNewsTicker v.1.0.5 allows a remote attacker to execute arbitrary code via a crafted payload to the re... 8.8 - HIGH 2023-09-28 2023-09-28
CVE-2023-41449 json An issue in phpkobo AjaxNewsTicker v.1.0.5 allows a remote attacker to execute arbitrary code via a crafted payload to the re... 9.8 - CRITICAL 2023-09-27 2023-09-28
CVE-2023-41448 json Cross Site Scripting vulnerability in phpkobo AjaxNewTicker v.1.0.5 allows a remote attacker to execute arbitrary code via a ... 6.1 - MEDIUM 2023-09-27 2023-09-28
CVE-2023-41447 json Cross Site Scripting vulnerability in phpkobo AjaxNewTicker v.1.0.5 allows a remote attacker to execute arbitrary code via a ... 6.1 - MEDIUM 2023-09-28 2023-09-28
CVE-2023-41446 json Cross Site Scripting vulnerability in phpkobo AjaxNewTicker v.1.0.5 allows a remote attacker to execute arbitrary code via a ... 6.1 - MEDIUM 2023-09-28 2023-09-28
CVE-2023-41445 json Cross Site Scripting vulnerability in phpkobo AjaxNewTicker v.1.0.5 allows a remote attacker to execute arbitrary code via a ... 6.1 - MEDIUM 2023-09-27 2023-09-28
CVE-2023-5313 json A vulnerability classified as problematic was found in phpkobo Ajax Poll Script 3.18. Affected by this vulnerability is an un... 3.7 - LOW 2023-09-30 2023-11-07
CVE-2010-1063 json Multiple directory traversal vulnerabilities in Phpkobo Free Real Estate Contact Form 1.09, when magic_quotes_gpc is disabled... Not Provided 2010-03-23 2026-04-29
CVE-2010-1062 json Directory traversal vulnerability in codelib/sys/common.inc.php in Phpkobo Free Real Estate Contact Form 1.09, when magic_quo... Not Provided 2010-03-23 2026-04-29
CVE-2010-1061 json Multiple directory traversal vulnerabilities in Phpkobo Short URL 1.01, when magic_quotes_gpc is disabled, allow remote attac... Not Provided 2010-03-23 2026-04-29
CVE-2010-1060 json Directory traversal vulnerability in staff/app/common.inc.php in Phpkobo Short URL 1.01, when magic_quotes_gpc is disabled, a... Not Provided 2010-03-23 2026-04-29
CVE-2010-1059 json Directory traversal vulnerability in staff/app/common.inc.php in Phpkobo Address Book Script 1.09, when magic_quotes_gpc is d... Not Provided 2010-03-23 2026-04-29
CVE-2010-1058 json Directory traversal vulnerability in codelib/cfg/common.inc.php in Phpkobo Address Book Script 1.09, when magic_quotes_gpc is... Not Provided 2010-03-23 2026-04-29
CVE-2010-1057 json Multiple directory traversal vulnerabilities in Phpkobo AdFreely (aka Ad Board Script) 1.01, when magic_quotes_gpc is disable... Not Provided 2010-03-23 2026-04-29
© CVE.report 2026 |

Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.

CVE, CWE, and OVAL are registred trademarks of The MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. This site includes MITRE data granted under the following license.

Free CVE JSON API cve.report/api

CVE.report and Source URL Uptime Status status.cve.report