Activewebsoftwares Ewebquiz vulnerabilities
2 known vulnerabilities affecting activewebsoftwares/ewebquiz.
Total CVEs
2
CISA KEV
0
Public exploits
2
Exploited in wild
0
Severity breakdown
HIGH2
Vulnerabilities
Page 1 of 1
CVE-2009-4436P3HIGHCVSS 7.5PoCv8.02009-12-28
CVE-2009-4436 [HIGH] CVE-2009-4436: Multiple SQL injection vulnerabilities in Active Web Softwares eWebquiz 8 allow remote attackers to
Multiple SQL injection vulnerabilities in Active Web Softwares eWebquiz 8 allow remote attackers to execute arbitrary SQL commands via the QuizID parameter to (1) questions.asp, (2) importquestions.asp, and (3) quiztakers.asp, different vectors than CVE-2007-1706.
nvd
CVE-2010-2359P3HIGHCVSS 7.5PoCv8.02010-06-21
CVE-2010-2359 [HIGH] CVE-2010-2359: SQL injection vulnerability in eWebQuiz.asp in ActiveWebSoftwares.com eWebquiz 8 allows remote attac
SQL injection vulnerability in eWebQuiz.asp in ActiveWebSoftwares.com eWebquiz 8 allows remote attackers to execute arbitrary SQL commands via the QuizType parameter, a different vector than CVE-2007-1706.
nvd