Vulnerabilities > Swsoft > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2007-09-14 | CVE-2007-4892 | SQL Injection vulnerability in Swsoft Plesk Multiple SQL injection vulnerabilities in SWSoft Plesk 7.6.1, 8.1.0, 8.1.1, and 8.2.0 for Windows allow remote attackers to execute arbitrary SQL commands via a PLESKSESSID cookie to (1) login.php3 or (2) auth.php3. | 7.5 |
| 2006-07-03 | CVE-2006-3348 | SQL-Injection vulnerability in Swsoft Hspcomplete 3.2.2 Multiple SQL injection vulnerabilities in HSPcomplete 3.2.2 and 3.3 Beta and earlier allow remote attackers to execute arbitrary SQL commands via the (1) type parameter in report.php and (2) level parameter in custom_buttons.php. | 7.5 |
| 2006-04-13 | CVE-2006-1754 | SQL Injection vulnerability in Swsoft Confixx 3.0.6/3.0.8/3.1.2 SQL injection vulnerability in index.php in SWSoft Confixx 3.0.6, 3.0.8, and 3.1.2 allows remote attackers to execute arbitrary SQL commands via the SID parameter. | 7.5 |
| 2005-05-02 | CVE-2005-1302 | SQL Injection vulnerability in Swsoft Confixx 3.0.6/3.0.8/Pro3 SQL injection vulnerability in Confixx 3.08 and earlier allows remote attackers to execute arbitrary SQL commands via the "change user" field. | 7.5 |
| 2001-06-27 | CVE-2001-0476 | Buffer Overflow vulnerability in Swsoft Aspseek 1.0 Multiple buffer overflows in s.cgi program in Aspseek search engine 1.03 and earlier allow remote attackers to execute arbitrary commands via (1) a long HTTP query string, or (2) a long tmpl parameter. | 7.5 |