Creascripts Creadirectory vulnerabilities
3 known vulnerabilities affecting creascripts/creadirectory.
Total CVEs
3
CISA KEV
0
Public exploits
3
Exploited in wild
0
Severity breakdown
HIGH2MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2006-6083P3HIGHCVSS 7.5PoCv1.22006-11-24
CVE-2006-6083 [HIGH] CVE-2006-6083: SQL injection vulnerability in search.asp in CreaScripts Creadirectory allows remote attackers to ex
SQL injection vulnerability in search.asp in CreaScripts Creadirectory allows remote attackers to execute arbitrary SQL commands via the category parameter.
nvd
CVE-2007-2342P3HIGHCVSS 7.5PoCv1.22007-04-27
CVE-2007-2342 [HIGH] CVE-2007-2342: SQL injection vulnerability in error.asp in CreaScripts CreaDirectory 1.2 allows remote attackers to
SQL injection vulnerability in error.asp in CreaScripts CreaDirectory 1.2 allows remote attackers to execute arbitrary SQL commands via the id parameter, a different vector than CVE-2006-6083.
nvd
CVE-2006-6082P4MEDIUMCVSS 4.3PoCv1.22006-11-24
CVE-2006-6082 [MEDIUM] CVE-2006-6082: Multiple cross-site scripting (XSS) vulnerabilities in CreaScripts Creadirectory allow remote attack
Multiple cross-site scripting (XSS) vulnerabilities in CreaScripts Creadirectory allow remote attackers to inject arbitrary web script or HTML via the (1) cat parameter to addlisting.asp or the (2) search parameter to search.asp.
nvd