Arif Supriyanto : Security Vulnerabilities CVSS score >= 5

CVE-2006-3559

Multiple SQL injection vulnerabilities in Arif Supriyanto auraCMS 1.62 allow remote attackers to execute arbitrary SQL commands and delete all shoutbox messages via the (1) name and (2) pesan parameters.
Max CVSS
7.5
Published
2006-07-13
Updated
2018-10-18
EPSS
0.75%

CVE-2005-0655

auraCMS 1.5 allows remote attackers to obtain sensitive information via an HTTP request with an invalid id parameter to (1) teman.php, (2) hal.php, or (3) arsip.php, which reveals the path in a PHP error message.
Max CVSS
5.0
Published
2005-05-02
Updated
2016-10-18
EPSS
0.41%
2 vulnerabilities found
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!
Accept Close