VYPR

Property Site Manager

by Mginternet

CVEs (2)

  • CVE-2006-6709Dec 23, 2006
    risk 0.03cvss epss 0.01

    Multiple SQL injection vulnerabilities in MGinternet Property Site Manager allow remote attackers to execute arbitrary SQL commands via the (1) p parameter to (a) detail.asp; the (2) l, (3) typ, or (4) loc parameter to (b) listings.asp; or the (5) Password or (6) Username…

  • CVE-2006-6708Dec 23, 2006
    risk 0.03cvss epss 0.02

    Cross-site scripting (XSS) vulnerability in listings.asp in MGinternet Property Site Manager allows remote attackers to inject arbitrary web script or HTML via the s parameter.