Vulnerabilities > Soumu > Soumu Workflow > 03.03
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2006-12-23 | CVE-2006-6706 | SQL Injection vulnerability in Soumu products SQL injection vulnerability in Soumu Workflow for Groupmax 01-00 through 01-01, Soumu Workflow 02-00 through 03-03, and Koukyoumuke Soumu Workflow 01-00 through 01-01 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors in certain web pages. | 6.5 |
2006-12-23 | CVE-2006-6705 | Improper Authentication vulnerability in Soumu products Multiple unspecified vulnerabilities in the template files in Soumu Workflow for Groupmax 01-00 through 01-01, Soumu Workflow 02-00 through 03-03, and Koukyoumuke Soumu Workflow 01-00 through 01-01 allow remote attackers to bypass authentication mechanisms on web pages via unknown vectors. | 5.0 |