Orbitscripts » Smartppc Pro : Security Vulnerabilities, CVEs,
SQL injection vulnerability in directory.php in SmartPPC and SmartPPC Pro allows remote attackers to execute arbitrary SQL commands via the idDirectory parameter.
Max CVSS
7.5
EPSS Score
0.14%
Published
2008-07-11
Updated
2017-09-29
Multiple cross-site scripting (XSS) vulnerabilities in SmartPPC Pro allow remote attackers to inject arbitrary web script or HTML via the username parameter in (1) directory.php, (2) frames.php, and (3) search.php.
Max CVSS
4.3
EPSS Score
1.71%
Published
2005-11-26
Updated
2011-03-08
2 vulnerabilities found