Produkt Emucms (...) - CVEMAP.ORG

Podatności dla 'Emucms'

2008-06-27

CVE-2008-2891

CWE-89

SQL injection vulnerability in index.php in eMuSOFT emuCMS 0.3 allows remote attackers to execute arbitrary SQL commands via the cat_id parameter in a category action.

2006-09-15

CVE-2006-4822

Multiple cross-site scripting (XSS) vulnerabilities in index.php in eMuSOFT emuCMS 0.3 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) query or (2) page parameters.

Copyright 2024, cxsecurity.com