RSS   Vulnerabilities for 'Bestwebapp dating site'   RSS

2006-11-21
 
CVE-2006-6022

CWE-Other
 

 
Cross-site scripting (XSS) vulnerability in login_form.asp in BestWebApp Dating Site allows remote attackers to inject arbitrary web script or HTML via the msg parameter.

 
 
CVE-2006-6021

CWE-Other
 

 
SQL injection vulnerability in the login component in BestWebApp Dating Site allows remote attackers to execute arbitrary SQL commands via the (1) username and (2) passwd parameters.

 


Copyright 2024, cxsecurity.com

 

Back to Top