VYPR
Vendor

Proman

Products
2
CVEs
3
Across products
3
Status
Private

Products

2

Recent CVEs

3
  • CVE-2012-4265Aug 13, 2012
    risk 0.03cvss epss 0.01

    SQL injection vulnerability in category_edit.php in Proman Xpress 5.0.1 allows remote attackers to execute arbitrary SQL commands via the cid parameter.

  • CVE-2010-2138Jun 2, 2010
    risk 0.03cvss epss 0.04

    Multiple directory traversal vulnerabilities in ProMan 0.1.1 and earlier allow remote attackers to include and execute arbitrary local files via directory traversal sequences in the _SESSION[userLang] parameter to (1) elisttasks.php, (2) managepmanagers.php, (3) manageusers.php,…

  • CVE-2010-2137Jun 2, 2010
    risk 0.03cvss epss 0.06

    PHP remote file inclusion vulnerability in _center.php in ProMan 0.1.1 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the page parameter.