RSS   Vulnerabilities for 'Online banking'   RSS

2008-04-18
 
CVE-2008-1893

CWE-94
 

 
PHP remote file inclusion vulnerability in index.php in W2B Online Banking allows remote attackers to execute arbitrary PHP code via a URL in the ilang parameter.

 
2007-06-11
 
CVE-2007-3175

 

 
Multiple SQL injection vulnerabilities in W2B Online Banking allow remote attackers to execute arbitrary SQL commands via (1) the draft parameter to mailer.w2b or (2) the listDocPay parameter to DocPay.w2b.

 
 
CVE-2007-3174

 

 
Cross-site scripting (XSS) vulnerability in auth.w2b in W2B Online Banking allows remote attackers to inject arbitrary web script or HTML via the adtype parameter, a different vector than CVE-2006-1980.

 
2006-04-21
 
CVE-2006-1980

 

 
Cross-site scripting (XSS) vulnerability in W2B Online Banking allows remote attackers to inject arbitrary web script or HTML via the (1) query string, (2) SID parameter, or (3) ilang parameter.

 

 >>> Vendor: W2B 8 Products
Phpforumpro
Online banking
Dating club
Phphotresources
Phpdatingclub
Phpgreetcards
Phpemployment
Phpadboard


Copyright 2024, cxsecurity.com

 

Back to Top