Vulnerabilities > Digiappz > Digiaffiliate
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2009-03-18 | CVE-2008-6487 | SQL Injection vulnerability in Digiappz Digiaffiliate Multiple SQL injection vulnerabilities in login.asp in Digiappz DigiAffiliate 1.4 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) admin and (2) password fields. | 7.5 |
2007-01-18 | CVE-2007-0306 | SQL Injection vulnerability in DigiAppz DigiAffiliate Visu_User.ASP SQL injection vulnerability in visu_user.asp in Digiappz DigiAffiliate 1.4 and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter. | 7.5 |