Vulnerabilities (CVE)

Filtered by vendor Scriptme Subscribe
Total 3 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2007-0339 1 Scriptme 1 Sme Filemailer 2024-02-28 7.5 HIGH N/A
SQL injection vulnerability in index.php (aka the login form) in Scriptme SMe FileMailer 1.21 allows remote attackers to execute arbitrary SQL commands via the Password field (ps parameter). NOTE: some of these details are obtained from third party information.
CVE-2006-0856 1 Scriptme 1 Sme Gb Host 2024-02-28 7.5 HIGH N/A
SQL injection vulnerability in login.php in Scriptme SmE GB Host 1.21 allows remote attackers to execute arbitrary SQL commands and bypass authentication via the Username parameter.
CVE-2006-0661 1 Scriptme 2 Sme Blog Host, Sme Gb Host 2024-02-28 4.3 MEDIUM N/A
Cross-site scripting (XSS) vulnerability in Scriptme SmE GB Host 1.21 and SmE Blog Host allows remote attackers to inject arbitrary web script or HTML via the BBcode url tag.