Vulnerabilities > Media2 CMS
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2006-02-04 | CVE-2006-0532 | Cross-Site Scripting vulnerability in SoftMaker Shop Cross-site scripting (XSS) vulnerability in resultat.asp in SoftMaker Shop allows remote attackers to inject arbitrary web script or HTML via a strSok parameter containing a javascript: URI in an IMG SRC attribute. network media2-cms | 4.3 |
2005-12-20 | CVE-2005-4404 | SQL-Injection vulnerability in Media2 Cms Shop SQL injection vulnerability in default.asp in Media2 CMS Shop 18.x allows remote attackers to execute arbitrary SQL commands via the item parameter. | 7.5 |