Vulnerabilities > Addsoft

DATE CVE VULNERABILITY TITLE RISK
2006-03-07 CVE-2006-1025 Cross-Site Scripting vulnerability in Addsoft Storebot 2002
Cross-site scripting (XSS) vulnerability in manage.asp in Addsoft StoreBot 2002 Standard allows remote attackers to inject arbitrary web script or HTML via the ShipMethod parameter.
network
addsoft
6.8
2006-03-07 CVE-2006-1024 SQL Injection vulnerability in Addsoft Storebot 2005
SQL injection vulnerability in MgrLogin.asp in Addsoft StoreBot 2005 Professional allows remote attackers to execute arbitrary SQL commands via the Pwd parameter.
network
low complexity
addsoft
7.5