Vulnerabilities > Nextweb
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2005-06-01 | CVE-2005-1836 | Denial-Of-Service vulnerability in Nextweb (i)Site NEXTWEB (i)Site allows remote attackers to cause a denial of service (error 500) via a crafted HTTP request, possibly involving wildcard requests for .jsp files. | 5.0 |
| 2005-06-01 | CVE-2005-1834 | SQL-Injection vulnerability in Nextweb %28I%29Site SQL injection vulnerability in login.asp in NEXTWEB (i)Site allows remote attackers to execute arbitrary SQL commands and bypass authentication via the password field. | 7.5 |