RSS   Vulnerabilities for 'Baseline cms'   RSS

2005-12-19
 
CVE-2005-4378

 

 
SQL injection vulnerability in Page.asp in Baseline CMS 1.95 and earlier allows remote attackers to execute arbitrary SQL commands via the SiteNodeID parameter.

 
 
CVE-2005-4377

 

 
Cross-site scripting (XSS) vulnerability in Page.asp in Baseline CMS 1.95 and earlier allows remote attackers to inject arbitrary web script or HTML via the (1) PageID and (2) SiteNodeID parameters.

 


Copyright 2024, cxsecurity.com

 

Back to Top