Vulnerabilities (CVE)

Filtered by vendor Scriptphp Subscribe
Filtered by product Messageriescripthp
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2006-6521 1 Scriptphp 1 Messageriescripthp 2024-02-28 7.5 HIGH N/A
SQL injection vulnerability in lire-avis.php in Messageriescripthp 2.0 allows remote attackers to execute arbitrary SQL commands via the aa parameter.
CVE-2006-6520 1 Scriptphp 1 Messageriescripthp 2024-02-28 6.8 MEDIUM N/A
Multiple cross-site scripting (XSS) vulnerabilities in Messageriescripthp 2.0 allow remote attackers to inject arbitrary web script or HTML via the (1) pseudo parameter to (a) existepseudo.php, the (2) email parameter to (b) existeemail.php, or the (3) pageName or (4) cssform parameter to (c) Contact/contact.php.