RSS   Vulnerabilities for 'Casino script'   RSS

2006-10-23
 
CVE-2006-5457

 

 
Multiple cross-site scripting (XSS) vulnerabilities in the registration form in Casinosoft Casino Script (Masvet) 3.2 allow remote attackers to inject arbitrary web script or HTML via the (1) name or (2) surname field.

 
 
CVE-2006-5446

 

 
SQL injection vulnerability in lobby/config.php in Casinosoft Casino Script (aka Masvet) 3.2 allows remote attackers to execute arbitrary SQL commands via the cfam parameter.

 


Copyright 2024, cxsecurity.com

 

Back to Top