Vulnerabilities > Onlinetechtools COM
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2010-11-05 | CVE-2010-4186 | SQL Injection vulnerability in Onlinetechtools.Com Oasys Professional 2.10 SQL injection vulnerability in process.asp in OnlineTechTools Online Work Order System (OWOS) Professional Edition 2.10 allows remote attackers to execute arbitrary SQL commands via the password parameter. | 7.5 |
2010-05-11 | CVE-2009-4859 | Cross-Site Scripting vulnerability in Onlinetechtools.Com Owos Lite 3.10 Multiple cross-site scripting (XSS) vulnerabilities in Online Work Order Suite (OWOS) Lite Edition 3.10 allow remote attackers to inject arbitrary web script or HTML via the show parameter to (1) default.asp and (2) report.asp, and the (3) go parameter to login.asp. | 4.3 |
2005-11-27 | CVE-2005-3852 | SQL-Injection vulnerability in Onlinetechtools.Com Owos Lite 3.0 SQL injection vulnerability in search.asp in Online Work Order Suite (OWOS) Lite Edition for ASP 3.0 allows remote attackers to execute arbitrary SQL commands via the keyword parameter. | 7.5 |
2005-11-27 | CVE-2005-3851 | Cross-Site Scripting vulnerability in Onlinetechtools.Com Oasys Lite 1.0 Cross-site scripting (XSS) vulnerability in search.asp in Online Attendance System (OASYS) Lite 1.0 allows remote attackers to inject arbitrary web script or HTML via certain search parameters, possibly the keyword parameter. network onlinetechtools-com | 4.3 |
2005-11-27 | CVE-2005-3850 | Cross-Site Scripting vulnerability in Onlinetechtools.Com Okbsys Lite 1.0 Cross-site scripting (XSS) vulnerability in search.asp in Online Knowledge Base System (OKBSYS) Lite Edition 1.0 allows remote attackers to inject arbitrary web script or HTML via hex-encoded values in the q parameter. network onlinetechtools-com | 4.3 |