Vulnerabilities > Bpowerhouse

DATE CVE VULNERABILITY TITLE RISK
2010-01-04 CVE-2009-4540 SQL Injection vulnerability in Bpowerhouse Mini CMS 1.0.1
SQL injection vulnerability in page.php in Mini CMS 1.0.1 allows remote attackers to execute arbitrary SQL commands via the id parameter. 		6.8
6.8
2009-09-30 CVE-2009-3503 SQL Injection vulnerability in Bpowerhouse Bpholidaylettings 1.0
Multiple SQL injection vulnerabilities in search.aspx in BPowerHouse BPHolidayLettings 1.0 allow remote attackers to execute arbitrary SQL commands via the (1) rid and (2) tid parameters.
network
low complexity
bpowerhouse CWE-89
7.5
7.5
2009-09-30 CVE-2009-3502 SQL Injection vulnerability in Bpowerhouse Bpmusic 1.0
SQL injection vulnerability in music.php in BPowerHouse BPMusic 1.0 allows remote attackers to execute arbitrary SQL commands via the music_id parameter.
network
low complexity
bpowerhouse CWE-89
7.5
7.5
2009-09-30 CVE-2009-3501 SQL Injection vulnerability in Bpowerhouse Bpstudents 1.0
SQL injection vulnerability in students.php in BPowerHouse BPStudents 1.0 allows remote attackers to execute arbitrary SQL commands via the test parameter in a preview action.
network
low complexity
bpowerhouse CWE-89
7.5
7.5
2009-09-30 CVE-2009-3500 SQL Injection vulnerability in Bpowerhouse Bpgames 1.0
Multiple SQL injection vulnerabilities in BPowerHouse BPGames 1.0 allow remote attackers to execute arbitrary SQL commands via the (1) cat_id parameter to main.php and (2) game_id parameter to game.php.
network
low complexity
bpowerhouse CWE-89
7.5
7.5
2009-09-30 CVE-2009-3499 SQL Injection vulnerability in Bpowerhouse Bplawyercasedocuments 1.0
SQL injection vulnerability in employee.aspx in BPowerHouse BPLawyerCaseDocuments 1.0 allows remote attackers to execute arbitrary SQL commands via the cat parameter.
network
low complexity
bpowerhouse CWE-89
7.5
7.5
2008-12-16 CVE-2008-5594 Path Traversal vulnerability in Bpowerhouse Mini Blog 1.0.1
Multiple directory traversal vulnerabilities in index.php in Mini Blog 1.0.1 allow remote attackers to include and execute arbitrary local files via a ..
network
low complexity
bpowerhouse CWE-22
7.5
7.5
2008-12-16 CVE-2008-5593 Path Traversal vulnerability in Bpowerhouse Mini CMS 1.0.1
Multiple directory traversal vulnerabilities in index.php in Mini CMS 1.0.1 allow remote attackers to include and execute arbitrary local files via a ..
network
low complexity
bpowerhouse CWE-22
7.5
7.5