Filtered by vendor Phanatic Softwares Subscriptions
Total 2 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2006-0137 1 Phanatic Softwares 1 Chimera Web Portal 2024-11-21 N/A
SQL injection vulnerability in linkcategory.php in Phanatic Softwares Chimera Web Portal System 0.2 allows remote attackers to execute arbitrary SQL commands via the id parameter.
CVE-2006-0136 1 Phanatic Softwares 1 Chimera Web Portal 2024-11-21 N/A
Multiple cross-site scripting (XSS) vulnerabilities in the guestbook module in modules.php in Phanatic Softwares Chimera Web Portal System 0.2 allow remote attackers to inject arbitrary web script or HTML via the (1) comment_poster, (2) comment_poster_email, (3) comment_poster_homepage, and (4) comment_text parameters.