Vulnerabilities > Open Tibia Server CMS
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2007-02-08 | CVE-2007-0847 | SQL-Injection vulnerability in Open Tibia Server Cms SQL injection vulnerability in mod/PM/reply.php in Open Tibia Server CMS (OTSCMS) 2.1.5 and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter to priv.php. | 7.5 |
2007-02-08 | CVE-2007-0846 | Input Validation vulnerability in OTSCMS Cross-site scripting (XSS) vulnerability in forum.php in Open Tibia Server CMS (OTSCMS) 2.1.5 and earlier allows remote attackers to inject arbitrary HTML or web script via the name parameter. network open-tibia-server-cms | 6.8 |