Vulnerabilities > Allinta
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2011-10-09 | CVE-2010-4922 | SQL Injection vulnerability in Allinta CMS 22.07.2010 Multiple SQL injection vulnerabilities in Allinta CMS 22.07.2010 allow remote attackers to execute arbitrary SQL commands via the i parameter in an edit action to (1) contentAE.asp or (2) templatesAE.asp. | 7.5 |
2005-12-20 | CVE-2005-4374 | Cross-Site Scripting vulnerability in Allinta CMS Multiple cross-site scripting (XSS) vulnerabilities in Allinta 2.3.2 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) s parameter to faq.asp and (2) searchQuery parameter to search.asp. network allinta | 4.3 |