Vulnerabilities > Turbotraffictrader

DATE CVE VULNERABILITY TITLE RISK
2004-12-31 CVE-2004-2192 Input Validation vulnerability in Turbotraffictrader PHP 1.0
SQL injection vulnerability in tttadmin/settings.php in Turbo Traffic Trader PHP 1.0 allows remote attackers to execute arbitrary SQL commands via the ttt_admin parameter.
network
low complexity
turbotraffictrader
7.5
2004-12-31 CVE-2004-2191 Input Validation vulnerability in Turbotraffictrader PHP 1.0
Cross-site scripting (XSS) vulnerability in ttt-webmaster.php in Turbo Traffic Trader PHP 1.0 allows remote attackers to inject arbitrary web script or HTML via the (1) msg[0] or (2) siteurl parameters.
4.3
2004-12-31 CVE-2004-2017 Cross-Site Scripting and HTML Injection vulnerability in Turbotraffictrader C 1.0
Multiple cross-site scripting (XSS) vulnerabilities in Turbo Traffic Trader C (TTT-C) 1.0 allow remote attackers to inject arbitrary HTML or web script, as demonstrated via (1) the link parameter to ttt-out, (2) the X-Forwarded-For header in a GET request to ttt-in, (3) the Referer header in a GET request to ttt-in, or the (4) site name or (5) site URL fields in the main control panel.
4.3