Deltascripts Pro Publish vulnerabilities
3 known vulnerabilities affecting deltascripts/pro_publish.
Total CVEs
3
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
HIGH1MEDIUM2
Vulnerabilities
Page 1 of 1
CVE-2006-2821P4MEDIUMCVSS 6.8PoCv2.02006-06-05
CVE-2006-2821 [MEDIUM] CVE-2006-2821: Multiple cross-site scripting (XSS) vulnerabilities in DeltaScripts Pro Publish allow remote attacke
Multiple cross-site scripting (XSS) vulnerabilities in DeltaScripts Pro Publish allow remote attackers to inject arbitrary web script or HTML via the (1) artid parameter in art.php and the (2) catname parameter in cat.php.
nvd
CVE-2006-2128P3HIGHCVSS 7.5v2.02006-05-01
CVE-2006-2128 [HIGH] CWE-89 CVE-2006-2128: Multiple SQL injection vulnerabilities in Pro Publish 2.0 allow remote attackers to execute arbitrar
Multiple SQL injection vulnerabilities in Pro Publish 2.0 allow remote attackers to execute arbitrary SQL commands via the (1) email and (2) password parameter to (a) admin/login.php, (3) find_str parameter to (b) search.php, or (4) artid parameter to (c) art.php, or (5) catid parameter to (d) cat.php.
nvd
CVE-2006-2129P4MEDIUMCVSS 5.5v2.02006-05-01
CVE-2006-2129 [MEDIUM] CVE-2006-2129: Direct static code injection vulnerability in Pro Publish 2.0 allows remote authenticated administra
Direct static code injection vulnerability in Pro Publish 2.0 allows remote authenticated administrators to execute arbitrary PHP code by editing certain settings, which are stored in set_inc.php.
nvd