Idevspot Nixieaffiliate vulnerabilities
2 known vulnerabilities affecting idevspot/nixieaffiliate.
Total CVEs
2
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
HIGH1MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2006-4894P4MEDIUMCVSS 4.3PoC≤ 1.92006-09-19
CVE-2006-4894 [MEDIUM] CVE-2006-4894: Cross-site scripting (XSS) vulnerability in forms/lostpassword.php in iDevSpot NixieAffiliate 1.9 an
Cross-site scripting (XSS) vulnerability in forms/lostpassword.php in iDevSpot NixieAffiliate 1.9 and earlier allows remote attackers to inject arbitrary web script or HTML via the error parameter.
nvd
CVE-2006-4895P4HIGHCVSS 7.5≤ 1.92006-09-19
CVE-2006-4895 [HIGH] CVE-2006-4895: IDevSpot NexieAffiliate 1.9 and earlier allows remote attackers to delete arbitrary affiliates via a
IDevSpot NexieAffiliate 1.9 and earlier allows remote attackers to delete arbitrary affiliates via a modified id parameter to delete.php.
nvd