RSS   Vulnerabilities for 'All in one control panel'   RSS

2007-01-19
 
CVE-2007-0365

 

 
Multiple cross-site scripting (XSS) vulnerabilities in All In One Control Panel (AIOCP) 1.3.009 and earlier allow remote attackers to inject arbitrary web script or HTML via unspecified vectors. NOTE: this is probably a different vulnerability than CVE-2006-5830.

 
2007-01-12
 
CVE-2007-0223

 

 
SQL injection vulnerability in shared/code/cp_functions_downloads.php in Nicola Asuni All In One Control Panel (AIOCP) before 1.3.009 allows remote attackers to execute arbitrary SQL commands via the download_category parameter.

 


Copyright 2020, cxsecurity.com

 

Back to Top