VYPR

Almnzm

by Almnzm

CVEs (2)

  • CVE-2010-5055Nov 23, 2011
    risk 0.03cvss epss 0.02

    SQL injection vulnerability in index.php in Almnzm 2.1 allows remote attackers to execute arbitrary SQL commands via the id parameter.

  • CVE-2007-3173Jun 11, 2007
    risk 0.00cvss epss 0.01

    Almnzm allows remote attackers to obtain sensitive information via an activateorder request to index.php with an invalid orderid parameter, probably related to '[' and ']' characters.