Diesel Pay

CVEs (2)

CVE	Sev	Risk	CVSS	EPSS	KEV	Published	Description
CVE-2006-4358		0.04	—	0.08		Aug 27, 2006	Cross-site scripting (XSS) vulnerability in index.php in Diesel Pay allows remote attackers to inject arbitrary web script or HTML via the read parameter.
CVE-2008-6468		0.03	—	0.00		Mar 13, 2009	SQL injection vulnerability in index.php in Diesel Pay allows remote attackers to execute arbitrary SQL commands via the area parameter in a browse action.

CVE-2006-4358Aug 27, 2006
risk 0.04cvss —epss 0.08
Cross-site scripting (XSS) vulnerability in index.php in Diesel Pay allows remote attackers to inject arbitrary web script or HTML via the read parameter.
CVE-2008-6468Mar 13, 2009
risk 0.03cvss —epss 0.00
SQL injection vulnerability in index.php in Diesel Pay allows remote attackers to execute arbitrary SQL commands via the area parameter in a browse action.