Vulnerabilities > Nicola Asuni > ALL IN ONE Control Panel
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2007-01-19 | CVE-2007-0365 | Cross-Site Scripting vulnerability in All In One Control Panel Multiple cross-site scripting (XSS) vulnerabilities in All In One Control Panel (AIOCP) 1.3.009 and earlier allow remote attackers to inject arbitrary web script or HTML via unspecified vectors. network nicola-asuni | 6.8 |
2007-01-13 | CVE-2007-0223 | SQL Injection vulnerability in All In One Control Panel SQL injection vulnerability in shared/code/cp_functions_downloads.php in Nicola Asuni All In One Control Panel (AIOCP) before 1.3.009 allows remote attackers to execute arbitrary SQL commands via the download_category parameter. | 7.5 |