RSS   Vulnerabilities for 'Academic portal'   RSS

2008-02-22
 
CVE-2008-0909

CWE-79
 

 
Cross-site scripting (XSS) vulnerability in browse.asp in Schoolwires Academic Portal allows remote attackers to inject arbitrary web script or HTML via the c parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

 
 
CVE-2008-0908

CWE-89
 

 
SQL injection vulnerability in browse.asp in Schoolwires Academic Portal allows remote attackers to execute arbitrary SQL commands via the c parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

 


Copyright 2017, cxsecurity.com