Vulnerabilities > Webevents
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2007-08-03 | CVE-2007-4146 | Cross-Site Scripting vulnerability in WebEvent Webevent.CGI Cross-site scripting (XSS) vulnerability in webevent.cgi in WebEvent 2.61 through 4.03 allows remote attackers to inject arbitrary web script or HTML via the cmd parameter. network webevents | 4.3 |
2006-11-21 | CVE-2006-6007 | Denial-Of-Service vulnerability in Online Event Registration save_profile.asp in WebEvents (Online Event Registration Template) 2.0 and earlier allows remote attackers to change the profiles, passwords, and other information for arbitrary users via a modified UserID parameter. | 5.0 |