Filtered by vendor Aweb Subscriptions
Total 2 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2006-1700 1 Aweb 1 Scripts Seller 2024-11-21 N/A
Buy.php in Aweb Scripts Seller uses predictable cookies for authentication based on the time and the script number, which allows remote attackers to bypass authentication.
CVE-2006-1699 1 Aweb 1 Banner Generator 2024-11-21 N/A
Cross-site scripting (XSS) vulnerability in index.php in Aweb Banner Generator 3.0 and earlier allows remote attackers to inject arbitrary web script or HTML via the banner parameter in view mode.