RSS   Vulnerabilities for 'News manager lite'   RSS

2004-03-20
 
CVE-2004-1846

 

 
Multiple SQL injection vulnerabilities in News Manager Lite 2.5 allow remote attackers to execute arbitrary SQL code via the (1) ID parameter to more.asp, (2) ID parameter to category_news.asp, or (3) filter parameter to news_sort.asp.

 
2004-12-31
 
CVE-2004-1845

 

 
Multiple cross-site scripting (XSS) vulnerabilities in News Manager Lite 2.5 allow remote attackers to inject arbitrary web script or HTML via the (1) email parameter to comment_add.asp, (2) search parameter to search.asp, or (3) n parameter to category_news_headline.asp.

 

 >>> Vendor: Expinion.net 5 Products
News manager lite
Multicalendars
Inews publisher
News manager
Member management system


Copyright 2024, cxsecurity.com

 

Back to Top