SQL injection vulnerability in faqDsp.asp in aFAQ 1.0 allows remote attackers to execute arbitrary SQL commands via the catcode parameter.
Max CVSS
7.5
EPSS Score
0.28%
Published
2006-12-31
Updated
2017-10-19
Multiple SQL injection vulnerabilities in A-FAQ 1.0 allow remote attackers to execute arbitrary SQL commands via the (1) faqid parameter to faqDspItem.asp and (2) catcode parameter to faqDsp.asp.
Max CVSS
7.5
EPSS Score
0.40%
Published
2005-12-07
Updated
2011-03-08
2 vulnerabilities found