Vulnerabilities > Onlinetechtools COM

DATE CVE VULNERABILITY TITLE RISK
2010-11-05 CVE-2010-4186 SQL Injection vulnerability in Onlinetechtools.Com Oasys Professional 2.10
SQL injection vulnerability in process.asp in OnlineTechTools Online Work Order System (OWOS) Professional Edition 2.10 allows remote attackers to execute arbitrary SQL commands via the password parameter.
network
low complexity
onlinetechtools-com CWE-89
7.5
2010-05-11 CVE-2009-4859 Cross-Site Scripting vulnerability in Onlinetechtools.Com Owos Lite 3.10
Multiple cross-site scripting (XSS) vulnerabilities in Online Work Order Suite (OWOS) Lite Edition 3.10 allow remote attackers to inject arbitrary web script or HTML via the show parameter to (1) default.asp and (2) report.asp, and the (3) go parameter to login.asp.
4.3
2005-11-27 CVE-2005-3852 SQL-Injection vulnerability in Onlinetechtools.Com Owos Lite 3.0
SQL injection vulnerability in search.asp in Online Work Order Suite (OWOS) Lite Edition for ASP 3.0 allows remote attackers to execute arbitrary SQL commands via the keyword parameter.
network
low complexity
onlinetechtools-com
7.5
2005-11-27 CVE-2005-3851 Cross-Site Scripting vulnerability in Onlinetechtools.Com Oasys Lite 1.0
Cross-site scripting (XSS) vulnerability in search.asp in Online Attendance System (OASYS) Lite 1.0 allows remote attackers to inject arbitrary web script or HTML via certain search parameters, possibly the keyword parameter.
4.3
2005-11-27 CVE-2005-3850 Cross-Site Scripting vulnerability in Onlinetechtools.Com Okbsys Lite 1.0
Cross-site scripting (XSS) vulnerability in search.asp in Online Knowledge Base System (OKBSYS) Lite Edition 1.0 allows remote attackers to inject arbitrary web script or HTML via hex-encoded values in the q parameter.
4.3