Bpowerhouse
Products
7- 2 CVEs
- 1 CVE
- 1 CVE
- 1 CVE
- 1 CVE
- 1 CVE
- 1 CVE
Recent CVEs
8| CVE | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2009-4540 | 0.03 | — | 0.00 | Jan 4, 2010 | SQL injection vulnerability in page.php in Mini CMS 1.0.1 allows remote attackers to execute arbitrary SQL commands via the id parameter. | ||
| CVE-2009-3503 | 0.03 | — | 0.00 | Sep 30, 2009 | Multiple SQL injection vulnerabilities in search.aspx in BPowerHouse BPHolidayLettings 1.0 allow remote attackers to execute arbitrary SQL commands via the (1) rid and (2) tid parameters. | ||
| CVE-2009-3502 | 0.03 | — | 0.00 | Sep 30, 2009 | SQL injection vulnerability in music.php in BPowerHouse BPMusic 1.0 allows remote attackers to execute arbitrary SQL commands via the music_id parameter. | ||
| CVE-2009-3500 | 0.03 | — | 0.00 | Sep 30, 2009 | Multiple SQL injection vulnerabilities in BPowerHouse BPGames 1.0 allow remote attackers to execute arbitrary SQL commands via the (1) cat_id parameter to main.php and (2) game_id parameter to game.php. | ||
| CVE-2009-3499 | 0.03 | — | 0.00 | Sep 30, 2009 | SQL injection vulnerability in employee.aspx in BPowerHouse BPLawyerCaseDocuments 1.0 allows remote attackers to execute arbitrary SQL commands via the cat parameter. | ||
| CVE-2008-5594 | 0.03 | — | 0.04 | Dec 16, 2008 | Multiple directory traversal vulnerabilities in index.php in Mini Blog 1.0.1 allow remote attackers to include and execute arbitrary local files via a .. (dot dot) in the (1) page and (2) admin parameters. | ||
| CVE-2008-5593 | 0.03 | — | 0.04 | Dec 16, 2008 | Multiple directory traversal vulnerabilities in index.php in Mini CMS 1.0.1 allow remote attackers to include and execute arbitrary local files via a .. (dot dot) in the (1) page and (2) admin parameters. | ||
| CVE-2009-3501 | 0.00 | — | 0.00 | Sep 30, 2009 | SQL injection vulnerability in students.php in BPowerHouse BPStudents 1.0 allows remote attackers to execute arbitrary SQL commands via the test parameter in a preview action. |
- CVE-2009-4540Jan 4, 2010risk 0.03cvss —epss 0.00
SQL injection vulnerability in page.php in Mini CMS 1.0.1 allows remote attackers to execute arbitrary SQL commands via the id parameter.
- CVE-2009-3503Sep 30, 2009risk 0.03cvss —epss 0.00
Multiple SQL injection vulnerabilities in search.aspx in BPowerHouse BPHolidayLettings 1.0 allow remote attackers to execute arbitrary SQL commands via the (1) rid and (2) tid parameters.
- CVE-2009-3502Sep 30, 2009risk 0.03cvss —epss 0.00
SQL injection vulnerability in music.php in BPowerHouse BPMusic 1.0 allows remote attackers to execute arbitrary SQL commands via the music_id parameter.
- CVE-2009-3500Sep 30, 2009risk 0.03cvss —epss 0.00
Multiple SQL injection vulnerabilities in BPowerHouse BPGames 1.0 allow remote attackers to execute arbitrary SQL commands via the (1) cat_id parameter to main.php and (2) game_id parameter to game.php.
- CVE-2009-3499Sep 30, 2009risk 0.03cvss —epss 0.00
SQL injection vulnerability in employee.aspx in BPowerHouse BPLawyerCaseDocuments 1.0 allows remote attackers to execute arbitrary SQL commands via the cat parameter.
- CVE-2008-5594Dec 16, 2008risk 0.03cvss —epss 0.04
Multiple directory traversal vulnerabilities in index.php in Mini Blog 1.0.1 allow remote attackers to include and execute arbitrary local files via a .. (dot dot) in the (1) page and (2) admin parameters.
- CVE-2008-5593Dec 16, 2008risk 0.03cvss —epss 0.04
Multiple directory traversal vulnerabilities in index.php in Mini CMS 1.0.1 allow remote attackers to include and execute arbitrary local files via a .. (dot dot) in the (1) page and (2) admin parameters.
- CVE-2009-3501Sep 30, 2009risk 0.00cvss —epss 0.00
SQL injection vulnerability in students.php in BPowerHouse BPStudents 1.0 allows remote attackers to execute arbitrary SQL commands via the test parameter in a preview action.