VYPR

Mercury CMS

by Tmc Visionpool

CVEs (2)

  • CVE-2005-4406Dec 20, 2005
    risk 0.00cvss epss 0.01

    SQL injection vulnerability in index.cfm in Mercury CMS 4.0 and earlier allows remote attackers to execute arbitrary SQL commands via the page parameter.

  • CVE-2005-4407Dec 20, 2005
    risk 0.00cvss epss 0.01

    Cross-site scripting (XSS) vulnerability in index.cfm in Mercury CMS 4.0 and earlier allows remote attackers to inject arbitrary web script or HTML via the (1) content and (2) criteria parameters.