Myre Vacation Rental

CVEs (2)

• CVE-2012-6587Aug 25, 2013
  risk 0.03cvss —epss 0.01

  Cross-site scripting (XSS) vulnerability in vacation/1_mobile/alert_members.php in MYRE Vacation Rental Software allows remote attackers to inject arbitrary web script or HTML via the link_idd parameter in a login action.

• CVE-2012-6586Aug 25, 2013
  risk 0.03cvss —epss 0.01

  Multiple SQL injection vulnerabilities in MYRE Vacation Rental Software allow remote attackers to execute arbitrary SQL commands via the (1) garage1 or (2) bathrooms1 parameter to vacation/1_mobile/search.php, or (3) unspecified input to vacation/widgate/request_more_information.php.