RSS   Vulnerabilities for 'Membership manager pro'   RSS

2008-11-18
 
CVE-2008-5128

CWE-264
 
 
Ocean12 Membership Manager Pro stores sensitive information under the web root with insufficient access control, which allows remote attackers to obtain sensitive information via a direct request to o12member.mdb.

 
2005-04-06
 
CVE-2005-1096

 
 
SQL injection vulnerability in main.asp for Ocean12 Membership Manager Pro 1.x allows remote attackers to execute arbitrary SQL commands via the UserID parameter.

 
2005-05-02
 
CVE-2005-1095

 
 
Cross-site scripting (XSS) vulnerability in main.asp for Ocean12 Membership Manager Pro 1.x allows remote attackers to inject arbitrary web script or HTML via the page parameter.

 

 >>> Vendor: Ocean12 technologies 6 Products
Membership manager pro
Calendar manager pro
Mailing list manager
Contact manager
Poll manager
Calendar manager

Copyright 2024, cxsecurity.com

 

Back to Top