Quicksquare Development » Honeycomb Archive Enterprise : Security Vulnerabilities, CVEs,
Cross-site scripting (XSS) vulnerability in Honeycomb Archive Enterprise 3.0 allows remote attackers to inject arbitrary web script or HTML via unspecified search parameters, possibly the keyword parameter in search.cfm.
Max CVSS
4.3
EPSS Score
0.68%
Published
2005-12-20
Updated
2017-07-20
Multiple SQL injection vulnerabilities in CategoryResults.cfm in Honeycomb Archive and Honeycomb Archive Enterprise 3.0 allow remote attackers to execute arbitrary SQL commands via the (1) series, (2) cat_parent, (3) cat, and (4) div parameters.
Max CVSS
7.5
EPSS Score
0.46%
Published
2005-12-20
Updated
2017-07-20
2 vulnerabilities found