Jmb Software : Security Vulnerabilities, CVEs, Published In 2006 (XSS)
Cross-site scripting (XSS) vulnerability in JMB Software AutoRank PHP 3.02 and earlier, and AutoRank Pro 5.01 and earlier, allows remote attackers to inject arbitrary web script or HTML via the (1) Keyword parameter in search.php and the (2) Username parameter in main.cgi.
Max CVSS
4.0
EPSS Score
1.88%
Published
2006-07-06
Updated
2018-10-18
Multiple cross-site scripting (XSS) vulnerabilities in index.php in Autogallery 0.41 allow remote attackers to inject arbitrary web script or HTML via the (1) pic or (2) show parameters.
Max CVSS
2.6
EPSS Score
0.55%
Published
2006-04-12
Updated
2017-07-20
2 vulnerabilities found