VYPR

Article Manager

by Omnistar

CVEs (2)

  • CVE-2007-4952Sep 18, 2007
    Omnistar
    Article Manager
    risk 0.03cvss epss 0.01

    SQL injection vulnerability in article.php in OmniStar Article Manager allows remote attackers to execute arbitrary SQL commands via the page_id parameter in a favorite op action, a different vector than CVE-2006-5917.

  • CVE-2006-5917Nov 15, 2006
    Omnistar
    Article Manager
    risk 0.00cvss epss 0.01

    Multiple SQL injection vulnerabilities in OmniStar Article Manager allow remote attackers to execute arbitrary SQL commands via the (1) article_id parameter in (a) articles/comments.php and (b) articles/article.php, and the (2) page_id parameter in (c) articles/pages.php.