Filtered by vendor Nicola Asuni Subscriptions
Filtered by product All In One Control Panel Subscriptions
Total 2 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2007-0365 1 Nicola Asuni 1 All In One Control Panel 2024-11-21 N/A
Multiple cross-site scripting (XSS) vulnerabilities in All In One Control Panel (AIOCP) 1.3.009 and earlier allow remote attackers to inject arbitrary web script or HTML via unspecified vectors. NOTE: this is probably a different vulnerability than CVE-2006-5830.
CVE-2007-0223 1 Nicola Asuni 1 All In One Control Panel 2024-11-21 N/A
SQL injection vulnerability in shared/code/cp_functions_downloads.php in Nicola Asuni All In One Control Panel (AIOCP) before 1.3.009 allows remote attackers to execute arbitrary SQL commands via the download_category parameter.