Discountedscripts Acg Ptp vulnerabilities
2 known vulnerabilities affecting discountedscripts/acg_ptp.
Total CVEs
2
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
HIGH1LOW1
Vulnerabilities
Page 1 of 1
CVE-2008-3944P3HIGHCVSS 7.5PoCv1.0.62008-09-05
CVE-2008-3944 [HIGH] CWE-89 CVE-2008-3944: SQL injection vulnerability in index.php in ACG-PTP 1.0.6 allows remote attackers to execute arbitra
SQL injection vulnerability in index.php in ACG-PTP 1.0.6 allows remote attackers to execute arbitrary SQL commands via the adid parameter in an adorder action.
nvd
CVE-2008-3782P4LOWCVSS 3.5v1.0.62008-08-26
CVE-2008-3782 [LOW] CWE-79 CVE-2008-3782: Multiple cross-site scripting (XSS) vulnerabilities in admin/index.php in ACG-PTP 1.0.6 allow remote
Multiple cross-site scripting (XSS) vulnerabilities in admin/index.php in ACG-PTP 1.0.6 allow remote authenticated administrators to inject arbitrary web script or HTML via the (1) Category name field under Advertisement Packages, the (2) Reason field under Credit/Debit Users, and the (3) FAQ question and (4) FAQ answer fields under Add New FAQ Entry.
nvd