VYPR

The Classified AD System

by Pwp Technologies

CVEs (2)

  • CVE-2006-6768Dec 27, 2006
    risk 0.03cvss epss 0.02

    Multiple cross-site scripting (XSS) vulnerabilities in default.asp in PWP Technologies The Classified Ad System allow remote attackers to inject arbitrary web script or HTML via the (1) cat or (2) main parameter.

  • CVE-2006-6349Dec 7, 2006
    risk 0.03cvss epss 0.02

    Multiple SQL injection vulnerabilities in PWP Technologies The Classified Ad System allow remote attackers to execute arbitrary SQL commands via (1) the main parameter in a view action (includes/mainpage/view.asp) in default.asp or (2) a query in the search engine.