Vulnerabilities > Quicksquare Development
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2005-12-20 | CVE-2005-4420 | Input Validation vulnerability in Quicksquare Development Honeycomb Archive Enterprise 3.0 Cross-site scripting (XSS) vulnerability in Honeycomb Archive Enterprise 3.0 allows remote attackers to inject arbitrary web script or HTML via unspecified search parameters, possibly the keyword parameter in search.cfm. network quicksquare-development | 4.3 |
2005-12-20 | CVE-2005-4419 | Input Validation vulnerability in Quick Square Development Honeycomb Archive Multiple SQL injection vulnerabilities in CategoryResults.cfm in Honeycomb Archive and Honeycomb Archive Enterprise 3.0 allow remote attackers to execute arbitrary SQL commands via the (1) series, (2) cat_parent, (3) cat, and (4) div parameters. | 7.5 |