Filtered by vendor Awffull Subscriptions
Filtered by product Awffull Subscriptions
Total 2 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2007-3299 1 Awffull 1 Awffull 2024-11-21 N/A
Cross-site scripting (XSS) vulnerability in AWFFull before 3.7.4, when AllSearchStr (aka the All Search Terms report) is enabled, allows remote attackers to inject arbitrary web script or HTML via a search string.
CVE-2007-0510 1 Awffull 1 Awffull 2024-11-21 N/A
Multiple buffer overflows in (1) graphs.c, (2) output.c, and (3) preserve.c in AWFFull 3.7.1 and earlier have unknown impact and attack vectors. NOTE: some of these details are obtained from third party information. NOTE: There may not be any attack vector that crosses privilege boundaries.