VYPR
Vendor

Geodesicsolutions

Products
5
CVEs
4
Across products
5
Status
Private

Products

5

Recent CVEs

4
  • CVE-2014-3871May 27, 2014
    risk 0.03cvss epss 0.03

    Multiple SQL injection vulnerabilities in register.php in Geodesic Solutions GeoCore MAX 7.3.3 (formerly GeoClassifieds and GeoAuctions) allow remote attackers to execute arbitrary SQL commands via the (1) c[password] or (2) c[username] parameter. NOTE: the b parameter to…

  • CVE-2006-7072Mar 2, 2007
    risk 0.03cvss epss 0.02

    Cross-site scripting (XSS) vulnerability in GeoClassifieds Enterprise 2.0.5.2 and earlier allows remote attackers to inject arbitrary web script and HTML via the (1) b[username] and (2) c parameters to (a) index.php, the b[username] parameter to (b) admin/index.php, and (3)…

  • CVE-2006-3822Jul 25, 2006
    risk 0.03cvss epss 0.01

    SQL injection vulnerability in index.php in GeodesicSolutions GeoAuctions Enterprise 1.0.6 allows remote attackers to execute arbitrary SQL commands via the d parameter.

  • CVE-2006-3823Jul 25, 2006
    risk 0.03cvss epss 0.02

    SQL injection vulnerability in index.php in GeodesicSolutions (1) GeoAuctions Premier 2.0.3 and (2) GeoClassifieds Basic 2.0.3 allows remote attackers to execute arbitrary SQL commands via the b parameter.