Vulnerabilities > Mxmania
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2009-03-02 | CVE-2008-6379 | SQL Injection vulnerability in Mxmania Gallery MX 2.0.0 SQL injection vulnerability in pics_pre.asp in Gallery MX 2.0.0 allows remote attackers to execute arbitrary SQL commands via the ID parameter. | 7.5 |
2009-03-02 | CVE-2008-6378 | SQL Injection vulnerability in Mxmania Calendar MX Professional 2.0.0 SQL injection vulnerability in calendar_Eventupdate.asp in Calendar Mx Professional 2.0.0 allows remote attackers to execute arbitrary SQL commands via the ID parameter. | 7.5 |
2006-12-29 | CVE-2006-6825 | Information Disclosure vulnerability in Calendar MX BASIC Calendar MX BASIC 1.0.2 and earlier store sensitive information under the web root with insufficient access control, which allows remote attackers to download a database via a direct request for calendar.mdb. | 7.5 |
2006-12-29 | CVE-2006-6813 | SQL Injection vulnerability in Mxmania File Upload Manager Detail.ASP SQL injection vulnerability in detail.asp in Mxmania File Upload Manager (FUM) 1.0.6 and earlier allows remote attackers to execute arbitrary SQL commands via the ID parameter. | 7.5 |
2006-12-28 | CVE-2006-6792 | SQL Injection vulnerability in Calendar MX Basic Calendar_Detail.ASP SQL injection vulnerability in calendar_detail.asp in Calendar MX BASIC 1.0.2 and earlier allows remote attackers to execute arbitrary SQL commands via the ID parameter. | 7.5 |
2006-12-28 | CVE-2006-6787 | SQL Injection vulnerability in Newsletter MX admin_mail_adressee.ASP SQL injection vulnerability in admin/admin_mail_adressee.asp in Newsletter MX 1.0.2 and earlier allows remote attackers to execute arbitrary SQL commands via the ID parameter. | 7.5 |