Valarsoft » Webmatic » 2.5 : Security Vulnerabilities
cpe:2.3:a:valarsoft:webmatic:2.5:*:*:*:*:*:*:*Multiple SQL injection vulnerabilities in Valarsoft Webmatic before 3.0.3 allow remote attackers to execute arbitrary SQL commands via unspecified vectors, a different issue than CVE-2008-2925.
Max CVSS
7.5
Published
2009-12-22
Updated
2009-12-23
EPSS
0.13%
Multiple cross-site scripting (XSS) vulnerabilities in Valarsoft Webmatic before 3.0.3 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors, a different issue than CVE-2008-2924.
Max CVSS
4.3
Published
2009-12-22
Updated
2009-12-23
EPSS
0.19%
SQL injection vulnerability in Webmatic before 2.8 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
Max CVSS
7.5
Published
2008-06-30
Updated
2017-08-08
EPSS
0.15%
Cross-site scripting (XSS) vulnerability in Webmatic before 2.8 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
Max CVSS
4.3
Published
2008-06-30
Updated
2017-08-08
EPSS
0.22%
SQL injection vulnerability in Webmatic before 2.6.2, and possibly other versions before 2.7, allows remote attackers to execute arbitrary SQL commands via unspecified vectors, possibly related to admin/admin_album.php and admin/admin_downloads.php. NOTE: some of these details are obtained from third party information.
Max CVSS
7.5
Published
2007-07-10
Updated
2011-03-08
EPSS
0.35%
5 vulnerabilities found