Vulnerabilities (CVE)

Filtered by vendor Phpscripte24 Subscribe
Total 6 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2010-1854 1 Phpscripte24 1 Pay Per Watch \& Bid Auktions System 2023-12-10 4.3 MEDIUM N/A
Cross-site scripting (XSS) vulnerability in auktion.php in Pay Per Watch & Bid Auktions System allows remote attackers to inject arbitrary web script or HTML via the id_auk parameter, which is not properly handled in a forced SQL error message. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information. NOTE: this might be resultant from CVE-2010-1855.
CVE-2010-1270 1 Phpscripte24 1 Multi Suktions Komplett System 2023-12-10 7.5 HIGH N/A
SQL injection vulnerability in auktion.php in Multi Auktions Komplett System 2 allows remote attackers to execute arbitrary SQL commands via the id_auk parameter.
CVE-2010-1923 1 Phpscripte24 1 Web Social Network Freunde Community 2023-12-10 7.5 HIGH N/A
SQL injection vulnerability in user.php in Hi Web Wiesbaden Web 2.0 Social Network Freunde Community System allows remote attackers to execute arbitrary SQL commands via the id parameter in a showgallery action.
CVE-2010-1269 1 Phpscripte24 1 Niedrig Gebote Pro Auktions System Ii 2023-12-10 7.5 HIGH N/A
SQL injection vulnerability in auktion.php in phpscripte24 Niedrig Gebote Pro Auktions System II allows remote attackers to execute arbitrary SQL commands via the id_auk parameter.
CVE-2010-1924 1 Phpscripte24 1 Live Shopping Multi Portal System 2023-12-10 7.5 HIGH N/A
SQL injection vulnerability in index.php in Hi Web Wiesbaden Live Shopping Multi Portal System allows remote attackers to execute arbitrary SQL commands via the artikel parameter.
CVE-2010-1855 1 Phpscripte24 1 Pay Per Watch \& Bid Auktions System 2023-12-10 7.5 HIGH N/A
SQL injection vulnerability in auktion.php in Pay Per Watch & Bid Auktions System allows remote attackers to execute arbitrary SQL commands via the id_auk parameter.