VYPR
Vendor

Jax

Products
3
CVEs
3
Across products
3
Status
Private

Products

3

Recent CVEs

3
  • CVE-2009-4447Dec 29, 2009
    risk 0.03cvss epss 0.03

    Jax Guestbook 3.5.0 allows remote attackers to bypass authentication and modify administrator settings via a direct request to admin/guestbook.admin.php.

  • CVE-2009-2378Jul 8, 2009
    risk 0.03cvss epss 0.02

    PHP remote file inclusion vulnerability in formmailer.admin.inc.php in Jax FormMailer 3.0.0 allows remote attackers to execute arbitrary PHP code via a URL in the BASE_DIR[jax_formmailer] parameter.

  • CVE-2005-4008Dec 5, 2005
    risk 0.00cvss epss 0.01

    SQL injection vulnerability in jax_calendar.php in Jax Calendar 1.34 allows remote attackers to execute arbitrary SQL commands via the (1) cal_id parameter, and possibly the (2) Y and (3) m parameters.