Vulnerabilities (CVE)

Filtered by vendor Sepcity Subscribe
Total 4 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2008-6157 1 Sepcity 1 Classified Ads 2024-11-21 5.0 MEDIUM 7.5 HIGH
SepCity Classified Ads stores the admin password in cleartext in data/classifieds.mdb, which allows context-dependent attackers to obtain sensitive information.
CVE-2008-6152 1 Sepcity 1 Faculty Portal 2024-11-21 7.5 HIGH N/A
SQL injection vulnerability in deptdisplay.asp in SepCity Faculty Portal allows remote attackers to execute arbitrary SQL commands via the ID parameter. NOTE: this was originally reported for Lawyer Portal, which does not have a deptdisplay.asp file.
CVE-2008-6151 1 Sepcity 1 Shopping Mall 2024-11-21 7.5 HIGH N/A
SQL injection vulnerability in shpdetails.asp in SepCity Shopping Mall allows remote attackers to execute arbitrary SQL commands via the ID parameter.
CVE-2008-6150 1 Sepcity 1 Classified Ads 2024-11-21 7.5 HIGH N/A
SQL injection vulnerability in classdis.asp in SepCity Classified Ads allows remote attackers to execute arbitrary SQL commands via the ID parameter.