Vulnerabilities > Fixit Knowledge Solutions

DATE CVE VULNERABILITY TITLE RISK
2006-12-01 CVE-2006-6196 Input Validation vulnerability in Fixit IDMS Pro
Cross-site scripting (XSS) vulnerability in the search functionality in Fixit iDMS Pro Image Gallery allows remote attackers to inject arbitrary web script or HTML via a search field (txtsearchtext parameter).
6.8
2006-12-01 CVE-2006-6195 Input Validation vulnerability in Fixit IDMS Pro
Multiple SQL injection vulnerabilities in Fixit iDMS Pro Image Gallery allow remote attackers to execute arbitrary SQL commands via the (1) show_id or (2) parentid parameter to (a) filelist.asp, or the (3) fid parameter to (b) showfile.asp.
network
low complexity
fixit-knowledge-solutions
7.5