Vulnerabilities (CVE)

Filtered by vendor Iatek Subscribe
Filtered by product Siteenable
Total 3 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2005-4483 1 Iatek 1 Siteenable 2024-11-21 4.3 MEDIUM N/A
Cross-site scripting (XSS) vulnerability in login.asp in SiteEnable 3.3 and earlier allows remote attackers to inject arbitrary web script or HTML via the ret_page parameter.
CVE-2005-1012 1 Iatek 1 Siteenable 2024-11-20 4.3 MEDIUM N/A
Cross-site scripting (XSS) vulnerability in Iatek SiteEnable allows remote attackers to inject arbitrary web script or HTML via (1) the contenttype parameter to content.asp, (2) the title, or (3) the description.
CVE-2005-1011 1 Iatek 1 Siteenable 2024-11-20 7.5 HIGH N/A
SQL injection vulnerability in content.asp in SiteEnable allows remote attackers to execute arbitrary SQL commands via the sortby parameter.