VYPR

Announcement Script

by Techno Dreams

CVEs (2)

  • CVE-2006-5641Nov 1, 2006
    risk 0.03cvss epss 0.01

    SQL injection vulnerability in MainAnnounce2.asp in Techno Dreams Announcement allows remote attackers to execute arbitrary SQL commands via the key parameter.

  • CVE-2005-3383Oct 30, 2005
    risk 0.00cvss epss 0.02

    SQL injection vulnerability in Techno Dreams Announcement script allows remote attackers to execute arbitrary SQL commands and bypass authentication via the userid parameter in admin/login.asp.