Filtered by vendor Orbitcoders
Subscriptions
Filtered by product Orbitmatrix
Subscriptions
Total
3 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2006-3614 | 1 Orbitcoders | 1 Orbitmatrix | 2024-11-21 | N/A |
| index.php in Orbitcoders OrbitMATRIX 1.0 allows remote attackers to trigger a SQL error via the page_name parameter, possibly due to a SQL injection vulnerability. | ||||
| CVE-2006-3610 | 1 Orbitcoders | 1 Orbitmatrix | 2024-11-21 | N/A |
| index.php in Orbitcoders OrbitMATRIX 1.0 allows remote attackers to obtain sensitive information (partial database schema) via a modified page_name parameter, which reflects portions of an SQL query in the result. NOTE: it is not clear whether the information is target-specific. If not, then this issue is not an exposure. | ||||
| CVE-2006-3609 | 1 Orbitcoders | 1 Orbitmatrix | 2024-11-21 | N/A |
| Cross-site scripting (XSS) vulnerability in index.php in Orbitcoders OrbitMATRIX 1.0 allows remote attackers to inject arbitrary web script or HTML via the page_name parameter with an IMG tag containing a javascript URI in the SRC attribute. | ||||
Page 1 of 1.