Vulnerabilities > Webhost Automation > Helm Control Panel > 3.1.17
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2004-12-31 | CVE-2004-1499 | Input Validation vulnerability in WebHost Automation Helm Control Panel Cross-site scripting (XSS) vulnerability in the compose message form in HELM 3.1.19 and earlier allows remote attackers to execute arbitrary web script or HTML via the Subject field. network webhost-automation | 4.3 |
| 2004-12-31 | CVE-2004-1498 | Input Validation vulnerability in WebHost Automation Helm Control Panel SQL injection vulnerability in the compose message form in HELM 3.1.19 and earlier allows remote attackers to execute arbitrary SQL commands via the messageToUserAccNum parameter. | 7.5 |