Vulnerabilities > Free LAN Intra Internet Portal

DATE CVE VULNERABILITY TITLE RISK
2007-02-03 CVE-2007-0696 Cross-Site Scripting vulnerability in Free Lan Intra Internet Portal
Cross-site scripting (XSS) vulnerability in error messages in Free LAN In(tra|ter)net Portal (FLIP) before 1.0-RC3 allows remote attackers to inject arbitrary web script or HTML via unspecified parameters, different vectors than CVE-2007-0611.
6.8
2007-02-03 CVE-2007-0695 SQL Injection vulnerability in Free LAN Intra Internet Portal Free LAN Intra Internet Portal 0.9.0.1029/0.9.0.730/1.0Rc1
Multiple SQL injection vulnerabilities in Free LAN In(tra|ter)net Portal (FLIP) before 1.0-RC3 allow remote attackers to execute arbitrary SQL commands via unspecified vectors.
network
low complexity
free-lan-intra-internet-portal CWE-89
7.5
2007-01-31 CVE-2007-0611 Cross-Site Scripting vulnerability in Free Lan Intra Internet Portal
Multiple cross-site scripting (XSS) vulnerabilities in Free LAN In(tra|ter)net Portal (FLIP) before 1.0-RC2 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors in (1) inc.page.php and (2) inc.text.php.
6.8