Iwebnegar
by Iwebnegar
CVEs (3)
| CVE | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2006-4497 | 0.03 | — | 0.00 | Aug 31, 2006 | SQL injection vulnerability in comments.php in IwebNegar 1.1 allows remote attackers to execute arbitrary SQL commands via the id parameter. | ||
| CVE-2004-1402 | 0.03 | — | 0.00 | Dec 31, 2004 | SQL injection vulnerability in iWebNegar allows remote attackers to execute arbitrary SQL commands via (1) the string parameter for index.php, (2) comments.php, or (3) the administrator login page. | ||
| CVE-2006-4496 | 0.00 | — | 0.00 | Aug 31, 2006 | Cross-site scripting (XSS) vulnerability in comments.php in IwebNegar 1.1 allows remote attackers to inject arbitrary web script or HTML via the comment parameter. |
- CVE-2006-4497Aug 31, 2006risk 0.03cvss —epss 0.00
SQL injection vulnerability in comments.php in IwebNegar 1.1 allows remote attackers to execute arbitrary SQL commands via the id parameter.
- CVE-2004-1402Dec 31, 2004risk 0.03cvss —epss 0.00
SQL injection vulnerability in iWebNegar allows remote attackers to execute arbitrary SQL commands via (1) the string parameter for index.php, (2) comments.php, or (3) the administrator login page.
- CVE-2006-4496Aug 31, 2006risk 0.00cvss —epss 0.00
Cross-site scripting (XSS) vulnerability in comments.php in IwebNegar 1.1 allows remote attackers to inject arbitrary web script or HTML via the comment parameter.