Vulnerabilities > Iwebnegar
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2006-08-31 | CVE-2006-4497 | SQL Injection vulnerability in Iwebnegar 1.1 SQL injection vulnerability in comments.php in IwebNegar 1.1 allows remote attackers to execute arbitrary SQL commands via the id parameter. | 7.5 |
2006-08-31 | CVE-2006-4496 | Cross-Site Scripting vulnerability in Iwebnegar 1.1 Cross-site scripting (XSS) vulnerability in comments.php in IwebNegar 1.1 allows remote attackers to inject arbitrary web script or HTML via the comment parameter. network iwebnegar | 4.3 |
2004-12-31 | CVE-2004-1402 | SQL Injection vulnerability in IWebNegar SQL injection vulnerability in iWebNegar allows remote attackers to execute arbitrary SQL commands via (1) the string parameter for index.php, (2) comments.php, or (3) the administrator login page. | 10.0 |