Vulnerabilities > Deltascripts > PRO Publish > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2006-06-05 | CVE-2006-2821 | Cross-Site Scripting vulnerability in Deltascripts PRO Publish 2.0 Multiple cross-site scripting (XSS) vulnerabilities in DeltaScripts Pro Publish allow remote attackers to inject arbitrary web script or HTML via the (1) artid parameter in art.php and the (2) catname parameter in cat.php. network deltascripts | 6.8 |
| 2006-05-01 | CVE-2006-2129 | SQL Injection vulnerability in Deltascripts PRO Publish 2.0 Direct static code injection vulnerability in Pro Publish 2.0 allows remote authenticated administrators to execute arbitrary PHP code by editing certain settings, which are stored in set_inc.php. | 5.5 |