Vulnerabilities > Omnistar Interactive

DATE	CVE	VULNERABILITY TITLE	RISK
2007-10-30	CVE-2007-5724	Cross-Site Scripting vulnerability in Omnistar Interactive Omnistar Live Multiple cross-site scripting (XSS) vulnerabilities in Omnistar Live allow remote attackers to inject arbitrary web script or HTML via (1) the category_id parameter to users/kb.php, and possibly (3) the Email Box field in profile.php. network omnistar-interactive CWE-79	4.3
2007-09-18	CVE-2007-4952	SQL Injection vulnerability in Omnistar Interactive Omnistar Article Manager SQL injection vulnerability in article.php in OmniStar Article Manager allows remote attackers to execute arbitrary SQL commands via the page_id parameter in a favorite op action, a different vector than CVE-2006-5917. network low complexity omnistar-interactive CWE-89	7.5
2005-11-29	CVE-2005-3880	SQL Injection vulnerability in KBase Express Multiple SQL injection vulnerabilities in Omnistar KBase 4.0 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) article_id parameter in users/comments.php, (2) category_id and (3) id parameters in users/kb.php. network low complexity omnistar-interactive	7.5
2005-11-26	CVE-2005-3840	SQL Injection vulnerability in Omnistar Interactive Omnistar Live SQL injection vulnerability in kb.php in Omnistar Live 5.2 and earlier allows remote attackers to execute arbitrary SQL commands via the (1) id and (2) category_id parameter. network low complexity omnistar-interactive CWE-89	7.5

Vulnerabilities > Omnistar Interactive {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Omnistar Interactive"}]}