Vendor
Phpcomasy
Products
1
CVEs
4
Across products
7
Status
Private
Products
1- 7 CVEs
Recent CVEs
4| CVE | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2009-1023 | 0.03 | — | 0.01 | Mar 20, 2009 | SQL injection vulnerability in index.php in phpComasy 0.9.1 allows remote attackers to execute arbitrary SQL commands via the entry_id parameter. | ||
| CVE-2008-1164 | 0.03 | — | 0.00 | Mar 5, 2008 | SQL injection vulnerability in index.php in phpComasy 0.8 allows remote attackers to execute arbitrary SQL commands via the mod_project_id parameter in a project_detail action. | ||
| CVE-2006-5827 | 0.00 | — | 0.02 | Nov 10, 2006 | Multiple cross-site scripting (XSS) vulnerabilities in index.php in phpComasy CMS 0.7.9pre and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) username or (2) password parameters. | ||
| CVE-2005-3744 | 0.00 | — | 0.01 | Nov 22, 2005 | SQL injection vulnerability in index.php in phpComasy 0.7.5 and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter. NOTE: an examination of the 0.7.5 source code suggests that there is no id parameter being handled directly by index.php. |