Vulnerabilities (CVE)

Filtered by vendor Icz Subscribe
Total 6 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2015-5645 1 Icz 1 Matchasns 2024-11-21 6.5 MEDIUM N/A
ICZ MATCHA SNS before 1.3.7 allows remote authenticated users to obtain administrative privileges via unspecified vectors.
CVE-2015-5644 1 Icz 1 Matchasns 2024-11-21 6.8 MEDIUM N/A
The installer in ICZ MATCHA SNS before 1.3.7 does not properly configure the database, which allows remote attackers to execute arbitrary PHP code via unspecified vectors.
CVE-2015-5643 1 Icz 1 Matchasns 2024-11-21 6.8 MEDIUM N/A
The installer in ICZ MATCHA INVOICE before 2.5.7 does not properly configure the database, which allows remote attackers to execute arbitrary PHP code via unspecified vectors.
CVE-2015-5642 1 Icz 1 Matchasns 2024-11-21 6.5 MEDIUM N/A
Multiple SQL injection vulnerabilities in ICZ MATCHA INVOICE before 2.5.7 allow remote authenticated users to execute arbitrary SQL commands via unspecified vectors.
CVE-2012-1238 1 Icz 1 Sencha Sns 2024-11-21 4.3 MEDIUM N/A
Session fixation vulnerability in SENCHA SNS before 1.0.2 allows remote attackers to hijack web sessions via unspecified vectors.
CVE-2012-1237 1 Icz 1 Sencha Sns 2024-11-21 6.8 MEDIUM N/A
Cross-site request forgery (CSRF) vulnerability in SENCHA SNS before 1.0.2 allows remote attackers to hijack the authentication of arbitrary users.