Vulnerabilities > Dominios Europa

DATE CVE VULNERABILITY TITLE RISK
2006-06-13 CVE-2006-2987 SQL-Injection vulnerability in Dominios Europa Picrate 1.0
Multiple SQL injection vulnerabilities in Dominios Europa PICRATE (aka TAL RateMyPic) 1.0 allow remote attackers to execute arbitrary SQL commands via the (1) id, (2) voteid, and (3) vfiel parameters to (a) index.php, and via the (4) nick, (5) email, (6) city, (7) messen, and (8) message form field parameters to (b) add.php.
network
low complexity
dominios-europa
7.5
2006-06-05 CVE-2006-2812 Cross-Site Scripting vulnerability in Dominios Europa Picrate 1.0
Multiple cross-site scripting (XSS) vulnerabilities in index.php in Dominios Europa PICRATE (aka TAL RateMyPic) 1.0 allow remote attackers to inject arbitrary web script or HTML via a javascript URI in the SRC attribute of an IMG element in the (1) name (aka nick), (2) email, and (3) comment boxes; and via the (4) id parameter.
network
dominios-europa
6.8