Vulnerabilities > Sepcity

DATE CVE VULNERABILITY TITLE RISK
2009-02-17 CVE-2008-6157 Cleartext Storage of Sensitive Information vulnerability in Sepcity Classified ADS
SepCity Classified Ads stores the admin password in cleartext in data/classifieds.mdb, which allows context-dependent attackers to obtain sensitive information.
network
low complexity
sepcity CWE-312
7.5
7.5
2009-02-16 CVE-2008-6152 SQL Injection vulnerability in Sepcity Faculty Portal
SQL injection vulnerability in deptdisplay.asp in SepCity Faculty Portal allows remote attackers to execute arbitrary SQL commands via the ID parameter.
network
low complexity
sepcity CWE-89
7.5
7.5
2009-02-16 CVE-2008-6151 SQL Injection vulnerability in Sepcity Shopping Mall
SQL injection vulnerability in shpdetails.asp in SepCity Shopping Mall allows remote attackers to execute arbitrary SQL commands via the ID parameter.
network
low complexity
sepcity CWE-89
7.5
7.5
2009-02-16 CVE-2008-6150 SQL Injection vulnerability in Sepcity Classified ADS
SQL injection vulnerability in classdis.asp in SepCity Classified Ads allows remote attackers to execute arbitrary SQL commands via the ID parameter.
network
low complexity
sepcity CWE-89
7.5
7.5