Ocean12tech » Contact Manager Pro : Security Vulnerabilities, CVEs, CVSS score >= 2
Cross-site scripting (XSS) vulnerability in default.asp in Ocean12 Contact Manager Pro 1.02 allows remote attackers to inject arbitrary web script or HTML via the DisplayFormat parameter.
Max CVSS
4.3
EPSS Score
0.24%
Published
2009-03-02
Updated
2017-09-29
SQL injection vulnerability in default.asp in Ocean12 Contact Manager Pro 1.02 allows remote attackers to execute arbitrary SQL commands via the Sort parameter.
Max CVSS
7.5
EPSS Score
0.17%
Published
2009-03-02
Updated
2017-09-29
2 vulnerabilities found