Vulnerabilities > Nathan Landry
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2006-03-06 | CVE-2006-1008 | Input Validation vulnerability in Nathan Landry N8Cms Sitesuite CMS 1.1/1.12/1.2 Multiple cross-site scripting (XSS) vulnerabilities in N8cms 1.1 and 1.2 allow remote attackers to inject arbitrary web script or HTML via the (1) dir and (2) page_id parameter to (a) index.php and (3) userid parameter to (b) mailto.php. network nathan-landry | 5.8 |
2006-03-06 | CVE-2006-1007 | Input Validation vulnerability in Nathan Landry N8Cms Sitesuite CMS 1.1/1.2 Multiple SQL injection vulnerabilities in N8cms 1.1 and 1.2 allow remote attackers to execute arbitrary SQL commands via the (1) dir and (2) page_id parameter to index.php. | 7.5 |