Filtered by vendor Web4future Subscriptions
Filtered by product News Portal Subscriptions
Total 2 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2006-2244 1 Web4future 1 News Portal 2024-11-21 N/A
Multiple SQL injection vulnerabilities in Web4Future News Portal allow remote attackers to execute arbitrary SQL commands via the ID parameter to (1) comentarii.php or (2) view.php.
CVE-2006-2243 1 Web4future 1 News Portal 2024-11-21 N/A
Multiple cross-site scripting (XSS) vulnerabilities in Web4Future News Portal allow remote attackers to inject arbitrary web script or HTML via the ID parameter to (1) comentarii.php or (2) view.php. NOTE: this issue might be resultant from SQL injection.