RSS   Podatności dla 'Email marketing system'   RSS

2006-02-28
 
CVE-2006-0920

CWE-Other
 
 
Oi! Email Marketing System 3.0 (aka Oi! 3) stores the server's FTP password in cleartext on a Configuration web page, which allows local users with superadministrator privileges, or attackers who have obtained access to the web page, to view the password.

 
 
CVE-2006-0919

CWE-Other
 
 
SQL injection vulnerability in index.php (aka the login page) in Oi! Email Marketing System 3.0 (aka Oi! 3) allows remote attackers to execute arbitrary SQL commands via the (1) Username and (2) Password fields.

 

 >>> Vendor: OI 2 Produkty
Email marketing system
Minha oi

Copyright 2024, cxsecurity.com

 

Back to Top