Vulnerabilities (CVE)

Filtered by vendor Desklance Subscribe
Filtered by product Desklance
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2005-3836 1 Desklance 1 Desklance 2024-02-28 7.5 HIGH N/A
SQL injection vulnerability in DeskLance 2.3 and earlier allows remote attackers to execute arbitrary SQL commands via the announce parameter.
CVE-2005-3835 1 Desklance 1 Desklance 2024-02-28 7.5 HIGH N/A
PHP remote file inclusion vulnerability in support/index.php in DeskLance 2.3 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the main parameter.