Digiappz Digirez vulnerabilities
2 known vulnerabilities affecting digiappz/digirez.
Total CVEs
2
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
HIGH1MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2007-0128P3HIGHCVSS 7.5PoC≤ 3.42007-01-09
CVE-2007-0128 [HIGH] CVE-2007-0128: SQL injection vulnerability in info_book.asp in Digirez 3.4 and earlier allows remote attackers to e
SQL injection vulnerability in info_book.asp in Digirez 3.4 and earlier allows remote attackers to execute arbitrary SQL commands via the book_id parameter.
nvd
CVE-2007-2880P4MEDIUMCVSS 4.3v3.42007-05-29
CVE-2007-2880 [MEDIUM] CVE-2007-2880: Multiple cross-site scripting (XSS) vulnerabilities in Digirez 3.4 allow remote attackers to inject
Multiple cross-site scripting (XSS) vulnerabilities in Digirez 3.4 allow remote attackers to inject arbitrary web script or HTML via the (1) Room_name parameter to room/info_book.asp or the (2) curYear parameter to room/week.asp.
nvd