Vulnerabilities > IP REG
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2008-10-18 | CVE-2008-4606 | SQL Injection vulnerability in IP REG IP REG 0.3 Multiple SQL injection vulnerabilities in IP Reg 0.4 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) location_id parameter to locationdel.php and (2) vlan_id parameter to vlanedit.php. | 7.5 |
| 2008-10-09 | CVE-2008-4523 | SQL Injection vulnerability in IP REG IP REG 0.1/0.2/0.3 SQL injection vulnerability in login.php in IP Reg 0.4 and earlier allows remote attackers to execute arbitrary SQL commands via the user_name parameter. | 7.5 |
| 2007-12-28 | CVE-2007-6579 | SQL Injection vulnerability in IP REG IP REG 0.3 Multiple SQL injection vulnerabilities in Ip Reg 0.3 allow remote attackers to execute arbitrary SQL commands via the vlan_id parameter to (1) vlanview.php, (2) vlanedit.php, and (3) vlandel.php; the (4) assetclassgroup_id parameter to assetclassgroupview.php; the (5) subnet_id parameter to nodelist.php; and unspecified other vectors. | 7.5 |