Aliacom Open Business Management vulnerabilities
2 known vulnerabilities affecting aliacom/open_business_management.
Total CVEs
2
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
HIGH1MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2006-3009P4MEDIUMCVSS 5.8PoCv1.0.3_pl12006-06-13
CVE-2006-3009 [MEDIUM] CVE-2006-3009: Multiple cross-site scripting (XSS) vulnerabilities in Open Business Management (OBM) 1.0.3 pl1 allo
Multiple cross-site scripting (XSS) vulnerabilities in Open Business Management (OBM) 1.0.3 pl1 allow remote attackers to inject arbitrary HTML or web script via the (1) tf_lang, (2) tf_name, (3) tf_user, (4) tf_lastname, (5) tf_contact, (6) tf_datebefore, and (7) tf_dateafter parameters to files such as (a) publication/publication_index.php, (b) group/group_
nvd
CVE-2006-3010P4HIGHCVSS 7.5v1.0.3_pl12006-06-13
CVE-2006-3010 [HIGH] CVE-2006-3010: Multiple SQL injection vulnerabilities in Open Business Management (OBM) 1.0.3 pl1 allow remote atta
Multiple SQL injection vulnerabilities in Open Business Management (OBM) 1.0.3 pl1 allow remote attackers to execute arbitrary SQL commands via the (1) new_order and (2) order_dir parameters to (a) index.php, (b) group/group_index.php, (c) user/user_index.php, (d) list/list_index.php, and (e) company/company_index.php, and the (3) entity and (4) tf_dateafter pa
nvd