Rainworx Rwauction Pro vulnerabilities
2 known vulnerabilities affecting rainworx/rwauction_pro.
Total CVEs
2
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
MEDIUM2
Vulnerabilities
Page 1 of 1
CVE-2005-4060P4MEDIUMCVSS 4.3PoCv4.0v5.02005-12-07
CVE-2005-4060 [MEDIUM] CWE-79 CVE-2005-4060: Cross-site scripting (XSS) vulnerability in search.asp in rwAuction Pro 4.0 and 5.0 allows remote at
Cross-site scripting (XSS) vulnerability in search.asp in rwAuction Pro 4.0 and 5.0 allows remote attackers to inject arbitrary web script or HTML via the searchtxt parameter.
nvd
CVE-2007-3540P4MEDIUMCVSS 4.3v5.02007-07-03
CVE-2007-3540 [MEDIUM] CVE-2007-3540: Multiple cross-site scripting (XSS) vulnerabilities in search.asp in rwAuction Pro 5.0 allow remote
Multiple cross-site scripting (XSS) vulnerabilities in search.asp in rwAuction Pro 5.0 allow remote attackers to inject arbitrary web script or HTML via the (1) search, (2) show, (3) searchtype, (4) catid, and (5) searchtxt parameters, a different version and vectors than CVE-2005-4060.
nvd