Vulnerabilities > Turbotraffictrader
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2004-12-31 | CVE-2004-2192 | Input Validation vulnerability in Turbotraffictrader PHP 1.0 SQL injection vulnerability in tttadmin/settings.php in Turbo Traffic Trader PHP 1.0 allows remote attackers to execute arbitrary SQL commands via the ttt_admin parameter. | 7.5 |
| 2004-12-31 | CVE-2004-2191 | Input Validation vulnerability in Turbotraffictrader PHP 1.0 Cross-site scripting (XSS) vulnerability in ttt-webmaster.php in Turbo Traffic Trader PHP 1.0 allows remote attackers to inject arbitrary web script or HTML via the (1) msg[0] or (2) siteurl parameters. network turbotraffictrader | 4.3 |
| 2004-12-31 | CVE-2004-2017 | Cross-Site Scripting and HTML Injection vulnerability in Turbotraffictrader C 1.0 Multiple cross-site scripting (XSS) vulnerabilities in Turbo Traffic Trader C (TTT-C) 1.0 allow remote attackers to inject arbitrary HTML or web script, as demonstrated via (1) the link parameter to ttt-out, (2) the X-Forwarded-For header in a GET request to ttt-in, (3) the Referer header in a GET request to ttt-in, or the (4) site name or (5) site URL fields in the main control panel. network turbotraffictrader | 4.3 |