Filtered by vendor Scriptphp Subscriptions
Filtered by product Messageriescripthp Subscriptions
Total 2 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2006-6521 1 Scriptphp 1 Messageriescripthp 2024-11-21 N/A
SQL injection vulnerability in lire-avis.php in Messageriescripthp 2.0 allows remote attackers to execute arbitrary SQL commands via the aa parameter.
CVE-2006-6520 1 Scriptphp 1 Messageriescripthp 2024-11-21 N/A
Multiple cross-site scripting (XSS) vulnerabilities in Messageriescripthp 2.0 allow remote attackers to inject arbitrary web script or HTML via the (1) pseudo parameter to (a) existepseudo.php, the (2) email parameter to (b) existeemail.php, or the (3) pageName or (4) cssform parameter to (c) Contact/contact.php.