Vulnerabilities > Stefan Frech

DATE CVE VULNERABILITY TITLE RISK
2006-12-07 CVE-2006-6359 Cross-Site Scripting vulnerability in Stefan Frech Online-Bookmarks 0.6.12
Cross-site scripting (XSS) vulnerability in Stefan Frech online-bookmarks 0.6.12 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
6.8
2006-12-07 CVE-2006-6358 Input Validation vulnerability in Stefan Frech Online-Bookmarks 0.6.12
SQL injection vulnerability in the login function in auth.inc in Stefan Frech online-bookmarks 0.6.12 allows remote attackers to execute arbitrary SQL commands via the (1) username and possibly the (2) password parameter.
network
low complexity
stefan-frech
7.5