VYPR

FAQ Manager Pro

by Ocean12

CVEs (3)

  • CVE-2008-7063Aug 25, 2009
    risk 0.03cvss epss 0.02

    Ocean12 FAQ Manager Pro stores sensitive data under the web root with insufficient access control, which allows remote attackers to download a database via a direct request for admin/o12faq.mdb.

  • CVE-2008-6372Mar 2, 2009
    risk 0.03cvss epss 0.01

    SQL injection vulnerability in default.asp in Ocean12 FAQ Manager Pro 1.0 allows remote attackers to execute arbitrary SQL commands via the ID parameter in a Cat action. NOTE: some of these details are obtained from third party information.

  • CVE-2008-5129Nov 18, 2008
    risk 0.00cvss epss 0.01

    Ocean12 Poll Manager Pro 1.00 stores sensitive information under the web root with insufficient access control, which allows remote attackers to obtain sensitive information via a direct request to o12poll.mdb.