VYPR

Easybookmarker

by Myiosoft

CVEs (4)

  • CVE-2008-5655Dec 17, 2008
    risk 0.03cvss epss 0.01

    Multiple SQL injection vulnerabilities in MyioSoft EasyBookMarker 4.0 allow remote attackers to execute arbitrary SQL commands via the (1) delete_folder and (2) delete_link parameters to unspecified vectors, possibly to (a) plugins/bookmarker/bookmarker_backend.php or (b)…

  • CVE-2008-5652Dec 17, 2008
    risk 0.03cvss epss 0.01

    SQL injection vulnerability in the loginADP function in ajaxp.php in MyioSoft EasyBookMarker 4.0 allows remote attackers to execute arbitrary SQL commands via the rsargs parameter, as reachable through the username parameter. NOTE: some of these details are obtained from third…

  • CVE-2008-5651Dec 17, 2008
    risk 0.03cvss epss 0.02

    SQL injection vulnerability in plugins/bookmarker/bookmarker_backend.php in MyioSoft EasyBookMarker 4.0 allows remote attackers to execute arbitrary SQL commands via the Parent parameter.

  • CVE-2008-3380Jul 30, 2008
    risk 0.03cvss epss 0.02

    Cross-site scripting (XSS) vulnerability in ajaxp_backend.php in MyioSoft EasyBookMarker 4.0 trial edition (tr) allows remote attackers to inject arbitrary web script or HTML via the rs parameter.