Almnzm : Security Vulnerabilities, CVEs,
SQL injection vulnerability in index.php in Almnzm 2.1 allows remote attackers to execute arbitrary SQL commands via the id parameter.
Max CVSS
7.5
EPSS Score
0.13%
Published
2011-11-23
Updated
2017-08-29
Almnzm allows remote attackers to obtain sensitive information via an activateorder request to index.php with an invalid orderid parameter, probably related to '[' and ']' characters.
Max CVSS
5.0
EPSS Score
0.59%
Published
2007-06-11
Updated
2018-10-16
2 vulnerabilities found