Fusionzone Couponzone vulnerabilities
3 known vulnerabilities affecting fusionzone/couponzone.
Total CVEs
3
CISA KEV
0
Public exploits
2
Exploited in wild
0
Severity breakdown
HIGH1MEDIUM2
Vulnerabilities
Page 1 of 1
CVE-2006-1489P3HIGHCVSS 7.5PoCv4.22006-03-29
CVE-2006-1489 [HIGH] CVE-2006-1489: Multiple SQL injection vulnerabilities in FusionZONE CouponZONE local.cfm in 4.2 and earlier allow r
Multiple SQL injection vulnerabilities in FusionZONE CouponZONE local.cfm in 4.2 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) companyid, (2) scat, and (3) coid parameters.
nvd
CVE-2006-1431P4MEDIUMCVSS 4.3PoCv4.22006-03-28
CVE-2006-1431 [MEDIUM] CVE-2006-1431: Cross-site scripting (XSS) vulnerability in local.cfm in fusionZONE couponZONE 4.2 allows remote att
Cross-site scripting (XSS) vulnerability in local.cfm in fusionZONE couponZONE 4.2 allows remote attackers to inject arbitrary web script or HTML via URL-encoded (1) srchfor and (2) srchby parameters.
nvd
CVE-2006-1432P4MEDIUMCVSS 5.0v4.22006-03-28
CVE-2006-1432 [MEDIUM] CVE-2006-1432: fusionZONE couponZONE 4.2 allows remote attackers to obtain the full path of the web server, and oth
fusionZONE couponZONE 4.2 allows remote attackers to obtain the full path of the web server, and other sensitive information, via invalid values, as demonstrated using manipulations associated with SQL.
nvd