Vulnerabilities > Stefan Frech
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2006-12-07 | CVE-2006-6359 | Cross-Site Scripting vulnerability in Stefan Frech Online-Bookmarks 0.6.12 Cross-site scripting (XSS) vulnerability in Stefan Frech online-bookmarks 0.6.12 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. | 6.8 |
2006-12-07 | CVE-2006-6358 | Input Validation vulnerability in Stefan Frech Online-Bookmarks 0.6.12 SQL injection vulnerability in the login function in auth.inc in Stefan Frech online-bookmarks 0.6.12 allows remote attackers to execute arbitrary SQL commands via the (1) username and possibly the (2) password parameter. | 7.5 |