RSS   Vulnerabilities for 'Ansel'   RSS

2004-12-31
 
CVE-2004-2266

 

 
SQL injection vulnerability in Ansel 2.1 and earlier allows remote attackers to modify SQL statements via the image parameter.

 
 
CVE-2004-2203

 

 
Ansel 1.2 through 2.0 uses insecure default permissions, which allows remote attackers to gain access to web readable directories.

 


Copyright 2017, cxsecurity.com