Internet Scout Scout Portal Toolkit vulnerabilities
2 known vulnerabilities affecting internet_scout/scout_portal_toolkit.
Total CVEs
2
CISA KEV
0
Public exploits
2
Exploited in wild
0
Severity breakdown
HIGH1MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2005-4195P3HIGHCVSS 7.5PoC≤ 1.3.1v1.3.0_beta2005-12-13
CVE-2005-4195 [HIGH] CWE-89 CVE-2005-4195: Multiple SQL injection vulnerabilities in Scout Portal Toolkit (SPT) 1.3.1 and earlier allow remote
Multiple SQL injection vulnerabilities in Scout Portal Toolkit (SPT) 1.3.1 and earlier allow remote attackers to execute arbitrary SQL commands via (1) the ParentId parameter in SPT--BrowseResources.php, (2) ResourceId parameter in SPT--FullRecord.php, (3) ResourceOffset parameter in SPT--Home.php, and (4) F_UserName and (5) F_Password in SPT--UserLogin.p
nvd
CVE-2005-4196P4MEDIUMCVSS 4.3PoC≤ 1.3.1v1.3.0_beta2005-12-13
CVE-2005-4196 [MEDIUM] CVE-2005-4196: Multiple cross-site scripting (XSS) vulnerabilities in Scout Portal Toolkit (SPT) 1.3.1 and earlier
Multiple cross-site scripting (XSS) vulnerabilities in Scout Portal Toolkit (SPT) 1.3.1 and earlier allow remote attackers to inject arbitrary web script or HTML via (1) the ss parameter in SPT--QuickSearch.php; (2) ParentId parameter in SPT--BrowseResources.php; (3) the ResourceId parameter in SPT--FullRecord.php; (4) ResourceOffset parameter in SPT--Home.php
nvd