RSS   Vulnerabilities for 'Ewebquiz'   RSS

2010-06-21
 
CVE-2010-2359

CWE-89
 

 
SQL injection vulnerability in eWebQuiz.asp in ActiveWebSoftwares.com eWebquiz 8 allows remote attackers to execute arbitrary SQL commands via the QuizType parameter, a different vector than CVE-2007-1706.

 
2009-12-28
 
CVE-2009-4436

CWE-89
 

 
Multiple SQL injection vulnerabilities in Active Web Softwares eWebquiz 8 allow remote attackers to execute arbitrary SQL commands via the QuizID parameter to (1) questions.asp, (2) importquestions.asp, and (3) quiztakers.asp, different vectors than CVE-2007-1706.

 

 >>> Vendor: Activewebsoftwares 18 Products
Active auction house
Active photo gallery
Active newsletter
Active trade
Ewebquiz
Activevotes
Active ewebquiz
Active time billing
Active force matrix
Active membership
Active price comparison
Active bids
Active test
Active business directory
Active web mail
Active web helpdesk
Quick tree view .net
Aspreferral


Copyright 2024, cxsecurity.com

 

Back to Top