VYPR

W3 Msql

by Hughes Technologies

CVEs (2)

  • CVE-2008-0146Jan 8, 2008
    risk 0.03cvss epss 0.02

    Cross-site scripting (XSS) vulnerability in the error page in W3-mSQL allows remote attackers to inject arbitrary web script or HTML via the PATH_INFO to the top-level URI.

  • CVE-1999-0753Aug 17, 1999
    risk 0.03cvss epss 0.05

    The w3-msql CGI script provided with Mini SQL allows remote attackers to view restricted directories.