VYPR

Nixieaffiliate

by Idevspot

CVEs (2)

  • CVE-2006-4894Sep 19, 2006
    risk 0.03cvss epss 0.04

    Cross-site scripting (XSS) vulnerability in forms/lostpassword.php in iDevSpot NixieAffiliate 1.9 and earlier allows remote attackers to inject arbitrary web script or HTML via the error parameter.

  • CVE-2006-4895Sep 19, 2006
    risk 0.00cvss epss 0.02

    IDevSpot NexieAffiliate 1.9 and earlier allows remote attackers to delete arbitrary affiliates via a modified id parameter to delete.php.